MyCity » Ambulanta -> Arhiva Ambulante » Virus sa fb-a

Virus sa fb-a

Napisano na dan: 10.3.2012

Virus sa fb-a

Sledeća strana

Pagination

Odgovori

marko021 Poslao: 10 Mar 2012 23:30 Idi na vrh
offline marko021 Građanin Pridružio: 20 Feb 2010 Poruke: 186	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 10 Mar 2012 23:08 Prijatelj sa fb me je oznacio na linku " [Video]Angelina Jolie getting fucked in hotel!! " Ja sam kliknu na to kada je nasledila stranica [cenzurisano] ,i kada sam kliknuo da skinem skinuo sam to i instalirao kao addon ja mislim. posle kada sam se ulogovao na profilu sam video mnosto mojih postova kako like to i kako sam tagovao prijatelje (jedno 10 postova svakih 10 min) Avast nije nista detektovao mycity.rs/must-login.png OTL logfile created on: 3/10/2012 10:59:59 PM - Run 1 OTL by OldTimer - Version 3.2.36.2 Folder = C:\Users\marko\Desktop 64bit- Ultimate Edition Service Pack 3 (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000409 \| Country: United States \| Language: ENU \| Date Format: M/d/yyyy 3.98 Gb Total Physical Memory \| 2.16 Gb Available Physical Memory \| 54.25% Memory free 7.96 Gb Paging File \| 5.35 Gb Available in Paging File \| 67.21% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: \| %SystemRoot% = C:\Windows \| %ProgramFiles% = C:\Program Files (x86) Drive C: \| 488.28 Gb Total Space \| 249.67 Gb Free Space \| 51.13% Space Free \| Partition Type: NTFS Drive D: \| 405.97 Gb Total Space \| 339.69 Gb Free Space \| 83.67% Space Free \| Partition Type: NTFS Drive E: \| 7.03 Gb Total Space \| 0.00 Gb Free Space \| 0.00% Space Free \| Partition Type: UDF Computer Name: MARKO-PC \| User Name: marko \| Logged in as Administrator. Boot Mode: Normal \| Scan Mode: Current user \| Include 64bit Scans Company Name Whitelist: Off \| Skip Microsoft Files: Off \| No Company Name Whitelist: On \| File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2012/03/10 22:58:26 \| 000,593,920 \| ---- \| M] (OldTimer Tools) -- C:\Users\marko\Desktop\OTL.exe PRC - [2012/03/07 01:15:17 \| 004,241,512 \| ---- \| M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe PRC - [2012/03/07 01:15:14 \| 000,044,768 \| ---- \| M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe PRC - [2012/02/21 14:05:22 \| 000,632,664 \| ---- \| M] (IObit) -- C:\Program Files (x86)\IObit\Game Booster 3\gbtray.exe PRC - [2012/02/09 12:13:15 \| 000,738,168 \| ---- \| M] (BitTorrent, Inc.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe PRC - [2012/02/02 22:14:04 \| 000,176,128 \| ---- \| M] (Skillbrains) -- C:\Users\marko\AppData\Local\Skillbrains\lightshot\2.0.0.5\Lightshot.exe PRC - [2012/01/09 20:17:44 \| 000,821,592 \| ---- \| M] (IObit) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe PRC - [2011/12/29 22:29:04 \| 000,497,496 \| ---- \| M] (IObit) -- C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe PRC - [2008/11/14 14:35:28 \| 001,453,992 \| R--- \| M] (Take-Two Interactive Software, Inc.) -- C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\1_0_0_0\RGSC.exe ========== Modules (No Company Name) ========== MOD - [2012/03/08 15:28:52 \| 000,429,040 \| ---- \| M] () -- C:\Users\marko\AppData\Local\Google\Chrome\Application\17.0.963.78\ppgooglenaclpluginchrome.dll MOD - [2012/03/08 15:28:51 \| 003,772,912 \| ---- \| M] () -- C:\Users\marko\AppData\Local\Google\Chrome\Application\17.0.963.78\pdf.dll MOD - [2012/03/08 15:27:37 \| 000,527,344 \| ---- \| M] () -- C:\Users\marko\AppData\Local\Google\Chrome\Application\17.0.963.78\libglesv2.dll MOD - [2012/03/08 15:27:35 \| 000,114,672 \| ---- \| M] () -- C:\Users\marko\AppData\Local\Google\Chrome\Application\17.0.963.78\libegl.dll MOD - [2012/03/08 15:27:26 \| 000,122,880 \| ---- \| M] () -- C:\Users\marko\AppData\Local\Google\Chrome\Application\17.0.963.78\avutil-51.dll MOD - [2012/03/08 15:27:24 \| 000,220,672 \| ---- \| M] () -- C:\Users\marko\AppData\Local\Google\Chrome\Application\17.0.963.78\avformat-53.dll MOD - [2012/03/08 15:27:23 \| 001,747,456 \| ---- \| M] () -- C:\Users\marko\AppData\Local\Google\Chrome\Application\17.0.963.78\avcodec-53.dll MOD - [2012/03/08 10:39:20 \| 008,593,056 \| ---- \| M] () -- C:\Users\marko\AppData\Local\Google\Chrome\Application\17.0.963.78\gcswf32.dll MOD - [2012/02/17 19:34:29 \| 000,593,408 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Messaging\184feff3d7c15c27ec0345d27c954cab\System.Messaging.ni.dll MOD - [2012/02/16 11:18:43 \| 001,914,880 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Run#\bb367de311a5a667d190a6692c712500\System.Workflow.Runtime.ni.dll MOD - [2012/02/16 11:18:42 \| 004,514,304 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Com#\0bbafbdfda6fd92b7fb4f73eea8232ee\System.Workflow.ComponentModel.ni.dll MOD - [2012/02/16 11:18:40 \| 002,995,200 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Act#\6ad8759175f1d88baaecf3778254ede8\System.Workflow.Activities.ni.dll MOD - [2012/02/16 11:18:38 \| 000,368,128 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\6954c7f14ea634672cdacf2cd793497e\PresentationFramework.Aero.ni.dll MOD - [2012/02/16 11:18:35 \| 010,578,432 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Design\2de1178a4e6c8d13ae1994dc67ba657a\System.Design.ni.dll MOD - [2012/02/16 11:18:30 \| 011,824,128 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\2df79ab909c782d3796e4107d040327d\System.Web.ni.dll MOD - [2012/02/16 11:18:26 \| 000,628,224 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\d32385362373fc2e4a60e0c1df1d313c\System.EnterpriseServices.ni.dll MOD - [2012/02/16 11:18:25 \| 000,627,200 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\f08bed8a99fdeed5f4ec538947851e29\System.Transactions.ni.dll MOD - [2012/02/16 11:18:18 \| 014,322,688 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\8435718626a24beaeefc98d45ae77127\PresentationFramework.ni.dll MOD - [2012/02/16 11:18:09 \| 012,431,360 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\ff30db6905f8ec024fc808ed8779c0f3\System.Windows.Forms.ni.dll MOD - [2012/02/16 11:18:05 \| 001,586,688 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\a09ee392fa90849f2e9313a1ebbe0279\System.Drawing.ni.dll MOD - [2012/02/16 11:18:04 \| 001,806,848 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\633c6734669cdde71728a7d59f1ed1a6\System.Deployment.ni.dll MOD - [2012/02/16 11:18:03 \| 012,216,320 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\c0508b05f5c28e37711f447a66368e75\PresentationCore.ni.dll MOD - [2012/02/16 11:17:56 \| 003,325,952 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\585ac5899ab444221c8b41df13b194bc\WindowsBase.ni.dll MOD - [2012/02/16 11:17:54 \| 000,680,960 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Security\2726e2ab6218f17a1bef5fe81130078c\System.Security.ni.dll MOD - [2012/02/16 11:17:52 \| 005,452,800 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d49f4cb0755ccc34cd35ff96dc2ef9e3\System.Xml.ni.dll MOD - [2012/02/16 11:17:50 \| 000,971,264 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\15742b3597258ce67cbe219005c197e5\System.Configuration.ni.dll MOD - [2012/02/16 11:17:49 \| 007,952,384 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\1f14b3e1ee0847f8662f513e67f92547\System.ni.dll MOD - [2012/02/08 03:19:14 \| 011,490,304 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\1b31ced9bb880d94fff1c6d47c16a81e\mscorlib.ni.dll MOD - [2012/02/02 22:14:04 \| 000,702,464 \| ---- \| M] () -- C:\Users\marko\AppData\Local\Skillbrains\lightshot\2.0.0.5\ScreenshotDll.dll MOD - [2011/12/15 15:16:32 \| 000,516,440 \| ---- \| M] () -- C:\Program Files (x86)\IObit\Game Booster 3\sqlite3.dll MOD - [2009/06/10 22:23:19 \| 000,261,632 \| ---- \| M] () -- C:\Windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll ========== Win32 Services (SafeList) ========== SRV:64bit: - [2012/03/07 01:15:14 \| 000,044,768 \| ---- \| M] (AVAST Software) [Auto \| Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus) SRV:64bit: - [2011/12/06 04:11:56 \| 000,235,520 \| ---- \| M] (AMD) [Auto \| Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility) SRV:64bit: - [2010/11/29 15:00:56 \| 000,149,504 \| ---- \| M] (Intel(R) Corporation) [On_Demand \| Running] -- C:\Program Files\Intel\TurboBoost\TurboBoost.exe -- (TurboBoost) Intel(R) SRV:64bit: - [2009/07/14 02:41:27 \| 001,011,712 \| ---- \| M] (Microsoft Corporation) [Auto \| Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV:64bit: - [2009/07/14 02:40:01 \| 000,193,536 \| ---- \| M] (Microsoft Corporation) [On_Demand \| Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV - [2012/02/24 10:25:17 \| 000,489,256 \| ---- \| M] (Valve Corporation) [On_Demand \| Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2012/02/21 23:22:38 \| 000,023,040 \| ---- \| M] () [Auto \| Stopped] -- C:\Program Files (x86)\BasicScan\basicscan.exe -- (BasicScan Service) SRV - [2012/01/31 15:09:34 \| 000,158,856 \| R--- \| M] (Skype Technologies) [Auto \| Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2012/01/09 20:17:44 \| 000,821,592 \| ---- \| M] (IObit) [Auto \| Running] -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe -- (IMFservice) SRV - [2012/01/03 14:10:42 \| 000,063,928 \| ---- \| M] (Adobe Systems Incorporated) [On_Demand \| Stopped] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2011/12/29 22:29:04 \| 000,497,496 \| ---- \| M] (IObit) [Auto \| Running] -- C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe -- (AdvancedSystemCareService5) SRV - [2010/03/18 13:16:28 \| 000,130,384 \| ---- \| M] (Microsoft Corporation) [Auto \| Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2010/01/15 13:49:20 \| 000,227,232 \| ---- \| M] (McAfee, Inc.) [On_Demand \| Stopped] -- C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService) SRV - [2009/06/10 22:23:09 \| 000,066,384 \| ---- \| M] (Microsoft Corporation) [Disabled \| Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) ========== Driver Services (SafeList) ========== DRV:64bit: - [2012/03/07 01:04:06 \| 000,819,032 \| ---- \| M] (AVAST Software) [File_System \| System \| Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx) DRV:64bit: - [2012/03/07 01:04:04 \| 000,337,240 \| ---- \| M] (AVAST Software) [Kernel \| System \| Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP) DRV:64bit: - [2012/03/07 01:02:20 \| 000,053,080 \| ---- \| M] (AVAST Software) [Kernel \| System \| Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr) DRV:64bit: - [2012/03/07 01:01:57 \| 000,059,224 \| ---- \| M] (AVAST Software) [Kernel \| System \| Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi) DRV:64bit: - [2012/03/07 01:01:52 \| 000,069,976 \| ---- \| M] (AVAST Software) [File_System \| Auto \| Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt) DRV:64bit: - [2012/03/07 01:01:32 \| 000,024,408 \| ---- \| M] (AVAST Software) [File_System \| Auto \| Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk) DRV:64bit: - [2012/03/02 17:35:44 \| 000,107,904 \| ---- \| M] (Advanced Micro Devices) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2012/03/02 17:35:44 \| 000,027,008 \| ---- \| M] (Advanced Micro Devices) [Kernel \| Boot \| Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2012/01/30 09:28:40 \| 000,283,200 \| ---- \| M] (DT Soft Ltd) [Kernel \| System \| Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV:64bit: - [2011/12/06 04:45:40 \| 010,720,256 \| ---- \| M] (Advanced Micro Devices, Inc.) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag) DRV:64bit: - [2011/12/06 03:12:14 \| 000,327,168 \| ---- \| M] (Advanced Micro Devices, Inc.) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap) DRV:64bit: - [2011/10/17 18:40:50 \| 000,093,712 \| ---- \| M] (Advanced Micro Devices) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService) DRV:64bit: - [2011/06/10 06:34:52 \| 000,539,240 \| ---- \| M] (Realtek ) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167) DRV:64bit: - [2010/11/29 15:00:04 \| 000,016,120 \| ---- \| M] (Intel(R) Corporation) [Kernel \| Auto \| Running] -- C:\Windows\SysNative\drivers\TurboB.sys -- (TurboB) DRV:64bit: - [2010/11/26 18:02:18 \| 000,017,720 \| ---- \| M] () [Kernel \| Boot \| Running] -- C:\Windows\SysNative\drivers\SmartDefragDriver.sys -- (SmartDefragDriver) DRV:64bit: - [2010/10/19 23:34:26 \| 000,056,344 \| ---- \| M] (Intel Corporation) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64) Intel(R) DRV:64bit: - [2010/07/01 14:21:50 \| 000,038,992 \| ---- \| M] (Screaming Bee LLC) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\ScreamingBAudio64.sys -- (ScreamBAudioSvc) DRV:64bit: - [2010/01/05 19:23:18 \| 001,847,296 \| ---- \| M] (Atheros Communications, Inc.) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\athurx.sys -- (athur) DRV:64bit: - [2009/11/18 09:47:46 \| 000,446,976 \| ---- \| M] (NETGEAR Inc. ) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\wg111v3.sys -- (RTL8187B) DRV:64bit: - [2009/07/14 02:52:20 \| 000,194,128 \| ---- \| M] (AMD Technologies Inc.) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2009/07/14 02:48:04 \| 000,065,600 \| ---- \| M] (LSI Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:64bit: - [2009/07/14 02:47:48 \| 000,077,888 \| ---- \| M] (Hewlett-Packard Company) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2009/07/14 02:47:48 \| 000,023,104 \| ---- \| M] (Microsoft Corporation) [Recognizer \| Boot \| Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:64bit: - [2009/07/14 02:45:55 \| 000,024,656 \| ---- \| M] (Promise Technology) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2009/06/10 21:34:33 \| 003,286,016 \| ---- \| M] (Broadcom Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2009/06/10 21:34:28 \| 000,468,480 \| ---- \| M] (Broadcom Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2009/06/10 21:34:23 \| 000,270,848 \| ---- \| M] (Broadcom Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:64bit: - [2009/06/10 21:31:59 \| 000,031,232 \| ---- \| M] (Hauppauge Computer Works, Inc.) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:64bit: - [2009/02/24 18:35:44 \| 000,255,552 \| ---- \| M] (MagicISO, Inc.) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\mcdbus.sys -- (mcdbus) DRV:64bit: - [2009/02/17 18:22:22 \| 000,017,792 \| ---- \| M] (ASUSTeK Computer Inc.) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\asusgsb.sys -- (asusgsb) DRV:64bit: - [2008/07/26 15:26:34 \| 000,050,072 \| ---- \| M] (Logitech Inc.) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\LVUSBS64.sys -- (LVUSBS64) DRV:64bit: - [2008/07/26 15:25:48 \| 000,790,424 \| ---- \| M] (Logitech Inc.) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64) DRV:64bit: - [2008/07/26 15:22:34 \| 002,624,408 \| ---- \| M] (Logitech Inc.) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\LV302V64.SYS -- (PID_PEPI) Logitech QuickCam IM(PID_PEPI) DRV:64bit: - [2008/07/26 15:22:22 \| 000,015,768 \| ---- \| M] (Logitech Inc.) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\lv302a64.sys -- (lvpepf64) DRV - [2009/07/14 02:19:10 \| 000,019,008 \| ---- \| M] (Microsoft Corporation) [File_System \| On_Demand \| Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) DRV - [2009/02/24 18:35:44 \| 000,255,552 \| ---- \| M] (MagicISO, Inc.) [Kernel \| On_Demand \| Running] -- C:\Windows\SysWOW64\drivers\mcdbus.sys -- (mcdbus) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = bing.com/search?q={searchTerms}&FORM=IE8SRC IE:64bit: - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = dts.search-results.com/sr?src=ieb&appid.....r=0&q={searchTerms} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = dts.search-results.com/sr?src=ieb&appid.....r=0&q={searchTerms} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = eu.ask.com/?l=dis&o=14200 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = msn.com/?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0E CD 02 93 CC DE CC 01 [binary data] IE - HKCU\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\..\SearchScopes\{33524C00-63FB-43DB-A6BF-0A4E14B24649}: "URL" = basicscan.com/?prt=BscscnPB&keywords={searchTerms} IE - HKCU\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = dts.search-results.com/sr?src=ieb&appid.....r=0&q={searchTerms} IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..keyword.URL: "http://www.basicscan.com/?tmp=nemo_results_removelink&prt=BscscnPB&keywords=" FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\marko\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\marko\AppData\Local\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\marko\AppData\Local\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2012/03/08 13:21:44 \| 000,000,000 \| ---D \| M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/02/25 00:02:51 \| 000,000,000 \| ---D \| M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\ClickPotatoLite@ClickPotatoLite.com: C:\Users\marko\AppData\Local\ClickPotatoLiteSA\bin\12.0.15.0\firefox\extensions [2012/02/22 21:09:47 \| 000,000,000 \| ---D \| M] [2012/02/25 00:00:08 \| 000,000,000 \| ---D \| M] (No name found) -- C:\Users\marko\AppData\Roaming\Mozilla\Extensions [2012/02/25 00:04:30 \| 000,000,000 \| ---D \| M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions [2012/02/25 00:04:30 \| 000,000,000 \| ---D \| M] (BasicScan) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{6AA54174-C9E8-4B07-95A0-0FBC19CBE64C} [2012/02/16 16:18:05 \| 000,134,104 \| ---- \| M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll [2012/02/16 12:57:50 \| 000,001,525 \| ---- \| M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazon-en-GB.xml [2012/02/16 12:43:05 \| 000,002,252 \| ---- \| M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml [2012/02/16 12:57:50 \| 000,000,759 \| ---- \| M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-en-GB.xml [2012/02/16 12:57:50 \| 000,002,782 \| ---- \| M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\pogodakyu.xml [2012/02/16 12:57:50 \| 000,002,421 \| ---- \| M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\vokabular.xml [2012/02/16 12:57:50 \| 000,001,333 \| ---- \| M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-sr.xml ========== Chrome ========== CHR - default_search_provider: Search Results (Enabled) CHR - default_search_provider: search_url = dts.search-results.com/sr?src=crb&appid.....r=0&q={searchTerms} CHR - default_search_provider: suggest_url = CHR - plugin: Shockwave Flash (Disabled) = C:\Users\marko\AppData\Local\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Users\marko\AppData\Local\Google\Chrome\Application\17.0.963.78\gcswf32.dll CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Users\marko\AppData\Local\Google\Chrome\Application\17.0.963.78\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\marko\AppData\Local\Google\Chrome\Application\17.0.963.78\pdf.dll CHR - plugin: Skype Toolbars (Enabled) = C:\Users\marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.9.0.9216_0\npSkypeChromePlugin.dll CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll CHR - plugin: Java Deployment Toolkit 6.0.300.12 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll CHR - plugin: Java(TM) Platform SE 6 U30 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll CHR - plugin: Facebook Video Calling Plugin (Enabled) = C:\Users\marko\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll CHR - plugin: Google Update (Enabled) = C:\Users\marko\AppData\Local\Google\Update\1.3.21.99\npGoogleUpdate3.dll CHR - plugin: Default Plug-in (Enabled) = default_plugin CHR - Extension: YouTube = C:\Users\marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\ CHR - Extension: Google \u043F\u0440\u0435\u0442\u0440\u0430\u0433\u0430 = C:\Users\marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.17_0\ CHR - Extension: avast! WebRep = C:\Users\marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1426_0\ CHR - Extension: Extension Plays Faster Youtube Video = C:\Users\marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\iihglmkdfbbffbgkdhmoddfefegeefhh\1.0.0_0\ CHR - Extension: Skype Click to Call = C:\Users\marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.9.0.9216_0\ CHR - Extension: Gmail = C:\Users\marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2009/06/10 22:00:26 \| 000,000,824 \| ---- \| M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) O2 - BHO: (no name) - {99079a25-328f-4bd4-be04-00955acaa0a7} - No CLSID value found. O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (SMTTB2009 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files (x86)\DealBulldog Toolbar\tbcore3.dll () O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) O3:64bit: - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found. O3 - HKLM\..\Toolbar: (DealBulldog Toolbar) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files (x86)\DealBulldog Toolbar\tbcore3.dll () O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) O3 - HKLM\..\Toolbar: (no name) - {99079a25-328f-4bd4-be04-00955acaa0a7} - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found. O4:64bit: - HKLM..\Run: [IntelTBRunOnce] wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" File not found O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.) O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software) O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKCU..\Run: [LightShot] C:\Users\marko\AppData\Local\Skillbrains\lightshot\LightShot.exe () O4 - HKCU..\Run: [RGSC] C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe (Take-Two Interactive Software, Inc.) O4 - Startup: C:\Users\marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Intel(R) Turbo Boost Technology Monitor 2.0.lnk = File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30) O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} active.macromedia.com/flash4/cabs/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.216.1.40 89.216.1.50 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{342277A8-39D8-4785-94A9-DBE2E877A956}: DhcpNameServer = 89.216.1.40 89.216.1.50 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{81663477-9904-46DD-AC4D-C9257FC49CE7}: DhcpNameServer = 89.216.1.40 89.216.1.50 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DA7E9D74-103D-4C9C-80A0-F95F26C6341D}: DhcpNameServer = 89.216.1.40 89.216.1.50 O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009/06/10 22:42:20 \| 000,000,024 \| ---- \| M] () - C:\autoexec.bat -- [ NTFS ] O32 - AutoRun File - [2008/11/15 10:52:50 \| 000,161,088 \| R--- \| M] (Take-Two Interactive Software, Inc.) - E:\Autorun.exe -- [ UDF ] O32 - AutoRun File - [2008/10/11 18:03:48 \| 000,000,054 \| R--- \| M] () - E:\Autorun.inf -- [ UDF ] O33 - MountPoints2\{d9bfa8c4-4b07-11e1-81a9-806e6f6e6963}\Shell - "" = AutoRun O33 - MountPoints2\{d9bfa8c4-4b07-11e1-81a9-806e6f6e6963}\Shell\AutoRun\command - "" = E:\Autorun.exe -- [2008/11/15 10:52:50 \| 000,161,088 \| R--- \| M] (Take-Two Interactive Software, Inc.) O34 - HKLM BootExecute: (autocheck autochk ) O35:64bit: - HKLM\..comfile [open] -- "%1" % O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2012/03/10 22:59:29 \| 000,593,920 \| ---- \| C] (OldTimer Tools) -- C:\Users\marko\Desktop\OTL.exe [2012/03/10 22:48:08 \| 000,000,000 \| ---D \| C] -- C:\Windows\SysWow64\QuickTime [2012/03/10 22:48:08 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Camtasia Studio 7 [2012/03/10 22:47:46 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\Common Files\TechSmith Shared [2012/03/10 22:47:44 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\TechSmith [2012/03/10 22:47:44 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\TechSmith [2012/03/10 22:31:47 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\Camtasia Studio 7 [2012/03/10 21:53:47 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Local\Microsoft Games [2012/03/10 20:13:56 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CamStudio [2012/03/10 20:13:53 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\CamStudio [2012/03/10 20:07:35 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\TEMP [2012/03/10 20:07:24 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\Desktop\New folder (2) [2012/03/09 17:35:30 \| 000,178,800 \| ---- \| C] (Sony DADC Austria AG.) -- C:\Windows\SysWow64\CmdLineExt_x64.dll [2012/03/09 17:31:15 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games [2012/03/09 16:58:19 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\Rockstar Games [2012/03/09 16:45:45 \| 000,000,000 \| ---D \| C] -- C:\Program Files\CCleaner [2012/03/09 16:45:01 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\CCleaner Business Edition v3.14.1616 PreActivated+Updater.{BssBig} [2012/03/08 18:06:18 \| 000,000,000 \| ---D \| C] -- C:\Windows\pss [2012/03/08 15:51:49 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\Documents\ASUS [2012/03/08 15:51:37 \| 000,023,680 \| ---- \| C] (ASUSTeK Computer Inc.) -- C:\Windows\SysNative\drivers\IOMap64.sys [2012/03/08 15:48:01 \| 002,212,864 \| ---- \| C] (ASUSTeK COMPUTER INC.) -- C:\Windows\SysNative\ATKDispCPL.dll [2012/03/08 15:48:01 \| 001,354,240 \| ---- \| C] (ASUSTeK Computer Inc.) -- C:\Windows\SysNative\atklumdispx.dll [2012/03/08 15:48:01 \| 000,150,528 \| ---- \| C] (ASUSTeK Computer Inc.) -- C:\Windows\SysNative\atkdx10dispx.dll [2012/03/08 15:48:01 \| 000,039,424 \| ---- \| C] (ASUSTeK Computer Inc.) -- C:\Windows\SysNative\drivers\ATKDispLowFilter.sys [2012/03/08 15:48:01 \| 000,017,792 \| ---- \| C] (ASUSTeK Computer Inc.) -- C:\Windows\SysNative\drivers\asusgsb.sys [2012/03/08 15:46:45 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS [2012/03/08 15:46:45 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\ASUS [2012/03/08 15:44:22 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\Desktop\New folder [2012/03/07 18:37:48 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\Skillbrains [2012/03/07 18:37:44 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Local\Skillbrains [2012/03/07 18:37:44 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LightShot [2012/03/03 17:38:04 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Local\Mato_Technologies [2012/03/03 17:37:58 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\X Applications Update Manager [2012/03/03 17:34:20 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\X GXT Editor [2012/03/03 17:34:20 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\Mato Technologies [2012/03/03 15:03:10 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\Desktop\emulator [2012/03/03 14:58:32 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\Desktop\GTA IV SRANJA [2012/03/02 17:45:08 \| 000,509,952 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\ntshrui.dll [2012/03/02 17:44:44 \| 000,515,584 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\timedate.cpl [2012/03/02 17:44:44 \| 000,478,208 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\timedate.cpl [2012/03/02 17:38:06 \| 000,000,000 \| -HSD \| C] -- C:\Config.Msi [2012/03/02 17:35:44 \| 002,566,144 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\esent.dll [2012/03/02 17:35:44 \| 001,686,016 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\esent.dll [2012/03/02 17:35:44 \| 000,187,264 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storport.sys [2012/03/02 17:35:44 \| 000,107,904 \| ---- \| C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdsata.sys [2012/03/02 17:35:44 \| 000,096,768 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\fsutil.exe [2012/03/02 17:35:44 \| 000,074,240 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\fsutil.exe [2012/03/02 17:35:44 \| 000,027,008 \| ---- \| C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdxata.sys [2012/03/02 17:34:15 \| 000,324,608 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys [2012/03/02 17:34:15 \| 000,007,936 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys [2012/03/02 17:31:10 \| 000,023,896 \| ---- \| C] (IObit) -- C:\Windows\SysNative\RegistryDefragBootTime.exe [2012/03/02 17:17:51 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter [2012/03/02 17:17:40 \| 000,031,576 \| ---- \| C] (IObit) -- C:\Windows\SysNative\SmartDefragBootTime.exe [2012/03/02 17:17:35 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 2 [2012/03/02 17:17:00 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Roaming\IObit [2012/03/02 17:17:00 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 5 [2012/03/02 17:13:51 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Booster 3 [2012/03/02 17:13:44 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\IObit [2012/03/02 17:13:44 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\IObit [2012/02/29 21:02:38 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus [2012/02/29 21:02:37 \| 000,337,240 \| ---- \| C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys [2012/02/29 21:02:37 \| 000,024,408 \| ---- \| C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys [2012/02/29 21:02:34 \| 000,053,080 \| ---- \| C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys [2012/02/29 21:02:33 \| 000,059,224 \| ---- \| C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys [2012/02/29 21:02:32 \| 000,819,032 \| ---- \| C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys [2012/02/29 21:02:25 \| 000,069,976 \| ---- \| C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys [2012/02/29 21:02:24 \| 000,258,520 \| ---- \| C] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe [2012/02/29 21:01:17 \| 000,041,184 \| ---- \| C] (AVAST Software) -- C:\Windows\avastSS.scr [2012/02/29 21:01:16 \| 000,201,352 \| ---- \| C] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe [2012/02/29 21:01:08 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\AVAST Software [2012/02/29 21:01:08 \| 000,000,000 \| ---D \| C] -- C:\Program Files\AVAST Software [2012/02/28 18:43:24 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\Documents\Tunngle [2012/02/28 18:43:24 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Roaming\Tunngle [2012/02/28 18:43:24 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Tunngle [2012/02/28 18:43:19 \| 000,031,232 \| ---- \| C] (Tunngle.net) -- C:\Windows\SysNative\drivers\tap0901t.sys [2012/02/28 18:20:10 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Local\Apple Computer [2012/02/28 17:48:40 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fraps [2012/02/28 17:48:40 \| 000,000,000 \| ---D \| C] -- C:\Fraps [2012/02/28 17:09:04 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\Documents\BSR Videos [2012/02/28 17:09:03 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\Documents\BSR Photos [2012/02/28 17:08:12 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Local\Bulents [2012/02/28 17:08:07 \| 000,000,000 \| ---D \| C] -- C:\Program Files\BSR Screen Recorder 5 [2012/02/28 17:08:07 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\Documents\BSR Projects [2012/02/28 16:36:54 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Roaming\Solveig Multimedia [2012/02/28 16:35:08 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\Documents\HyperCam3 [2012/02/28 16:35:06 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HyperCam 3 [2012/02/28 16:35:02 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\Common Files\Solveig Multimedia [2012/02/28 16:35:01 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\HyperCam 3 [2012/02/27 15:59:56 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Local\Rockstar Games [2012/02/26 17:45:47 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows - LIVE [2012/02/26 17:40:19 \| 000,000,000 \| RH-D \| C] -- C:\Users\marko\AppData\Roaming\SecuROM [2012/02/26 17:34:56 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus [2012/02/25 00:02:55 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Local\Mozilla [2012/02/25 00:02:51 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\Mozilla Firefox [2012/02/25 00:00:08 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Roaming\Thunderbird [2012/02/25 00:00:08 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Local\Thunderbird [2012/02/25 00:00:08 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Roaming\Mozilla [2012/02/24 22:41:06 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\Desktop\MPH Aimbot v19 [2012/02/24 10:21:31 \| 000,000,000 \| ---D \| C] -- C:\Windows\SysWow64\xlive [2012/02/24 10:21:31 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\Microsoft Games for Windows - LIVE [2012/02/24 08:06:35 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grand Theft Auto IV [2012/02/23 22:20:40 \| 001,847,296 \| R--- \| C] (Atheros Communications, Inc.) -- C:\Windows\SysNative\athurx.sys [2012/02/23 22:20:40 \| 001,847,296 \| ---- \| C] (Atheros Communications, Inc.) -- C:\Windows\SysNative\drivers\athurx.sys [2012/02/23 22:20:40 \| 000,000,000 \| ---D \| C] -- C:\Windows\Options [2012/02/23 22:20:14 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\TP-LINK [2012/02/22 21:14:51 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Local\APN [2012/02/22 21:13:21 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\BasicScan [2012/02/22 21:13:21 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\BasicScan [2012/02/22 21:09:48 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ClickPotato [2012/02/22 21:09:47 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Local\ClickPotatoLiteSA [2012/02/22 11:42:29 \| 000,000,000 \| ---D \| C] -- C:\Windows\Minidump [2012/02/21 20:33:49 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\DealBulldog Toolbar [2012/02/21 20:33:31 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Local\TempDIR [2012/02/21 20:33:26 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HyperCam 2 [2012/02/21 20:33:26 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\HyperCam 2 [2012/02/21 20:13:44 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Local\Facebook [2012/02/21 19:25:56 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\Screaming Bee LLC [2012/02/21 19:12:17 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Roaming\Screaming Bee [2012/02/21 19:12:02 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Screaming Bee [2012/02/21 19:12:01 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Screaming Bee [2012/02/21 19:12:01 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\Screaming Bee [2012/02/20 20:43:13 \| 000,000,000 \| ---D \| C] -- C:\Program Files\Common Files\logishrd [2012/02/18 12:10:34 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\Desktop\SKOLA [2012/02/18 11:35:52 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Roaming\Audacity [2012/02/18 11:35:46 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\Audacity 1.3 Beta (Unicode) [2012/02/15 18:03:12 \| 000,634,368 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcrt.dll [2012/02/15 18:03:01 \| 000,703,488 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2012/02/15 18:03:01 \| 000,482,816 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec [2012/02/15 18:03:01 \| 000,386,048 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec [2012/02/15 18:03:01 \| 000,256,000 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll [2012/02/15 18:03:01 \| 000,247,808 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2012/02/15 18:03:01 \| 000,185,856 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll [2012/02/15 18:03:01 \| 000,176,640 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2012/02/15 18:03:01 \| 000,134,144 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll [2012/02/15 18:03:01 \| 000,132,096 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll [2012/02/15 18:03:01 \| 000,097,280 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll [2012/02/15 18:03:01 \| 000,067,072 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll [2012/02/15 18:03:01 \| 000,057,856 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll [2012/02/15 18:03:01 \| 000,044,544 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll [2012/02/15 18:03:01 \| 000,012,800 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe [2012/02/15 18:03:01 \| 000,012,288 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe [2012/02/15 13:28:10 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MagicDisc [2012/02/15 13:28:10 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MagicDisc [2012/02/15 13:27:40 \| 000,255,552 \| ---- \| C] (MagicISO, Inc.) -- C:\Windows\SysWow64\drivers\mcdbus.sys [2012/02/15 13:27:40 \| 000,255,552 \| ---- \| C] (MagicISO, Inc.) -- C:\Windows\SysNative\drivers\mcdbus.sys [2012/02/15 13:27:40 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\MagicDisc [2012/02/15 13:23:22 \| 000,000,000 \| ---D \| C] -- C:\Users\Public\Documents\DAEMON Tools Images [2012/02/15 13:00:51 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Local\ElevatedDiagnostics [2012/02/15 13:00:27 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Local\Diagnostics [2012/02/14 16:33:08 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pcsx2 [2012/02/14 16:33:08 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\Pcsx2 [2012/02/14 11:47:21 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Roaming\Skype [2012/02/14 11:47:16 \| 000,000,000 \| R--D \| C] -- C:\Program Files (x86)\Skype [2012/02/14 11:47:16 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype [2012/02/14 11:47:16 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\Common Files\Skype [2012/02/14 11:47:15 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Skype [2012/02/11 11:48:18 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Roaming\Apple Computer [2012/02/10 19:01:05 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime [2012/02/10 19:00:59 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\QuickTime [2012/02/10 19:00:59 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Apple Computer [2012/02/10 19:00:22 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\Common Files\Apple [2012/02/10 19:00:16 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\Apple Software Update [2012/02/10 19:00:16 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\AppData\Local\Apple [2012/02/10 19:00:16 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Apple [2012/02/10 12:25:21 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Firefly Studios [2012/02/10 12:24:50 \| 000,000,000 \| ---D \| C] -- C:\Users\marko\Documents\Stronghold 2 [2012/02/10 11:30:20 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\Common Files\InstallShield [1 C:\Windows\.tmp files -> C:\Windows\.tmp -> ] ========== Files - Modified Within 30 Days ========== [2012/03/10 22:58:26 \| 000,593,920 \| ---- \| M] (OldTimer Tools) -- C:\Users\marko\Desktop\OTL.exe [2012/03/10 22:58:00 \| 000,000,388 \| ---- \| M] () -- C:\Windows\tasks\update-S-1-5-21-2118509853-3602802942-1037269567-1000.job [2012/03/10 22:48:09 \| 000,001,168 \| ---- \| M] () -- C:\Users\Public\Desktop\Camtasia Studio 7.lnk [2012/03/10 22:34:06 \| 000,000,908 \| ---- \| M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2118509853-3602802942-1037269567-1000UA.job [2012/03/10 22:17:34 \| 3376,740,307 \| ---- \| M] () -- C:\Users\marko\The Dark Knight.mkv [2012/03/10 22:15:00 \| 000,000,388 \| ---- \| M] () -- C:\Windows\tasks\update-sys.job [2012/03/10 20:18:07 \| 000,000,928 \| ---- \| M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2118509853-3602802942-1037269567-1000UA.job [2012/03/10 20:18:01 \| 000,000,906 \| ---- \| M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2118509853-3602802942-1037269567-1000Core.job [2012/03/10 20:07:11 \| 002,190,419 \| ---- \| M] () -- C:\Users\marko\Fraps.zip [2012/03/10 20:06:59 \| 002,609,266 \| ---- \| M] () -- C:\Users\marko\fraps 3.4.7 registered[A4].zip [2012/03/10 20:04:24 \| 000,007,680 \| ---- \| M] () -- C:\Users\marko\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012/03/10 20:02:43 \| 049,947,614 \| ---- \| M] () -- C:\Users\marko\Documents\clip0016.avi [2012/03/10 20:02:20 \| 001,242,064 \| ---- \| M] () -- C:\Users\marko\Documents\clip0015.avi [2012/03/10 11:34:01 \| 000,000,856 \| ---- \| M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2118509853-3602802942-1037269567-1000Core.job [2012/03/10 10:49:27 \| 000,014,016 \| -H-- \| M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2012/03/10 10:49:27 \| 000,014,016 \| -H-- \| M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2012/03/10 10:44:22 \| 000,067,584 \| --S- \| M] () -- C:\Windows\bootstat.dat [2012/03/10 10:44:14 \| 3207,307,264 \| -HS- \| M] () -- C:\hiberfil.sys [2012/03/09 18:16:09 \| 000,002,056 \| ---- \| M] () -- C:\Users\Public\Desktop\Rockstar Games Social Club.lnk [2012/03/09 17:35:30 \| 000,178,800 \| ---- \| M] (Sony DADC Austria AG.) -- C:\Windows\SysWow64\CmdLineExt_x64.dll [2012/03/09 17:31:15 \| 000,002,200 \| ---- \| M] () -- C:\Users\Public\Desktop\Grand Theft Auto IV.lnk [2012/03/09 16:47:03 \| 000,026,768 \| ---- \| M] () -- C:\Users\marko\Documents\cc_20120309_164647.reg [2012/03/09 16:45:47 \| 000,000,822 \| ---- \| M] () -- C:\Users\Public\Desktop\CCleaner.lnk [2012/03/08 20:34:38 \| 000,002,363 \| ---- \| M] () -- C:\Users\marko\Desktop\Google Chrome.lnk [2012/03/08 17:47:42 \| 000,778,834 \| ---- \| M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2012/03/08 17:47:42 \| 000,660,068 \| ---- \| M] () -- C:\Windows\SysNative\perfh009.dat [2012/03/08 17:47:42 \| 000,120,996 \| ---- \| M] () -- C:\Windows\SysNative\perfc009.dat [2012/03/08 13:21:45 \| 000,000,000 \| ---- \| M] () -- C:\Windows\SysWow64\config.nt [2012/03/07 18:37:54 \| 000,000,542 \| ---- \| M] () -- C:\Users\marko\AppData\Local\UserProducts.xml [2012/03/07 01:15:19 \| 000,041,184 \| ---- \| M] (AVAST Software) -- C:\Windows\avastSS.scr [2012/03/07 01:15:14 \| 000,201,352 \| ---- \| M] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe [2012/03/07 01:15:03 \| 000,258,520 \| ---- \| M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe [2012/03/07 01:04:06 \| 000,819,032 \| ---- \| M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys [2012/03/07 01:04:04 \| 000,337,240 \| ---- \| M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys [2012/03/07 01:02:20 \| 000,053,080 \| ---- \| M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys [2012/03/07 01:01:57 \| 000,059,224 \| ---- \| M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys [2012/03/07 01:01:52 \| 000,069,976 \| ---- \| M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys [2012/03/07 01:01:32 \| 000,024,408 \| ---- \| M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys [2012/03/02 17:48:43 \| 000,772,558 \| ---- \| M] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2012/03/02 17:45:08 \| 000,509,952 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\SysNative\ntshrui.dll [2012/03/02 17:44:44 \| 000,515,584 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\SysNative\timedate.cpl [2012/03/02 17:44:44 \| 000,478,208 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\SysWow64\timedate.cpl [2012/03/02 17:35:44 \| 002,566,144 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\SysNative\esent.dll [2012/03/02 17:35:44 \| 001,686,016 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\SysWow64\esent.dll [2012/03/02 17:35:44 \| 000,187,264 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storport.sys [2012/03/02 17:35:44 \| 000,107,904 \| ---- \| M] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdsata.sys [2012/03/02 17:35:44 \| 000,096,768 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\SysNative\fsutil.exe [2012/03/02 17:35:44 \| 000,074,240 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\SysWow64\fsutil.exe [2012/03/02 17:35:44 \| 000,027,008 \| ---- \| M] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdxata.sys [2012/03/02 17:34:15 \| 000,324,608 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys [2012/03/02 17:34:15 \| 000,007,936 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys [2012/02/29 21:02:38 \| 000,001,841 \| ---- \| M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk [2012/02/28 21:51:46 \| 000,274,320 \| ---- \| M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2012/02/28 17:55:26 \| 001,120,120 \| ---- \| M] () -- C:\Users\marko\Documents\clip0014.avi [2012/02/28 17:54:40 \| 002,143,356 \| ---- \| M] () -- C:\Users\marko\Documents\clip0013.avi [2012/02/28 17:53:59 \| 000,792,718 \| ---- \| M] () -- C:\Users\marko\Documents\clip0012.avi [2012/02/28 17:46:08 \| 030,033,488 \| ---- \| M] () -- C:\Users\marko\Documents\clip0011.avi [2012/02/28 17:45:28 \| 038,486,990 \| ---- \| M] () -- C:\Users\marko\Documents\clip0010.avi [2012/02/28 17:08:12 \| 000,692,224 \| ---- \| M] () -- C:\Windows\SysWow64\bsrmgcv.dll [2012/02/28 17:08:12 \| 000,192,512 \| ---- \| M] () -- C:\Windows\SysWow64\bsrmgps.dll [2012/02/28 17:08:12 \| 000,098,304 \| ---- \| M] () -- C:\Windows\SysWow64\bsreffs.dll [2012/02/28 17:08:12 \| 000,090,112 \| ---- \| M] () -- C:\Windows\SysWow64\bsrlback.dll [2012/02/28 17:08:12 \| 000,081,920 \| ---- \| M] () -- C:\Windows\SysWow64\bsrgvas.dll [2012/02/28 17:08:07 \| 000,585,728 \| ---- \| M] () -- C:\Windows\SysWow64\bsratswf.dll [2012/02/28 17:08:07 \| 000,147,456 \| ---- \| M] () -- C:\Windows\SysWow64\bsratwmv.dll [2012/02/25 00:02:51 \| 000,001,134 \| ---- \| M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2012/02/24 21:31:46 \| 000,985,876 \| ---- \| M] () -- C:\Users\marko\Documents\clip0009.avi [2012/02/22 21:13:15 \| 000,000,000 \| ---- \| M] () -- C:\ProgramData\6151927a8f178f89eea5403497c2bbc8_c [2012/02/21 21:41:58 \| 187,428,990 \| ---- \| M] () -- C:\Users\marko\Documents\clip0008.avi [2012/02/21 21:40:18 \| 011,094,330 \| ---- \| M] () -- C:\Users\marko\Documents\clip0007.avi [2012/02/21 21:33:03 \| 314,856,306 \| ---- \| M] () -- C:\Users\marko\Documents\asd.avi [2012/02/21 21:12:49 \| 430,835,252 \| ---- \| M] () -- C:\Users\marko\Documents\za sinisu.avi [2012/02/21 21:10:42 \| 078,955,714 \| ---- \| M] () -- C:\Users\marko\Documents\clip0006.avi [2012/02/21 21:10:11 \| 012,158,852 \| ---- \| M] () -- C:\Users\marko\Documents\clip0005.avi [2012/02/21 21:09:49 \| 011,972,204 \| ---- \| M] () -- C:\Users\marko\Documents\clip0004.avi [2012/02/21 21:09:35 \| 011,303,660 \| ---- \| M] () -- C:\Users\marko\Documents\clip0003.avi [2012/02/21 21:08:49 \| 429,336,960 \| ---- \| M] () -- C:\Users\marko\Documents\clip0002.avi [2012/02/21 21:05:14 \| 213,953,666 \| ---- \| M] () -- C:\Users\marko\Documents\clip0001.avi [2012/02/21 19:14:31 \| 000,001,365 \| ---- \| M] () -- C:\Users\marko\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [2012/02/21 19:12:02 \| 000,002,110 \| ---- \| M] () -- C:\Users\Public\Desktop\MorphVOX Pro.lnk [2012/02/18 11:35:48 \| 000,001,148 \| ---- \| M] () -- C:\Users\marko\Desktop\Audacity 1.3 Beta (Unicode).lnk [2012/02/14 16:25:27 \| 000,000,000 \| -H-- \| M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf [2012/02/14 11:47:16 \| 000,002,515 \| ---- \| M] () -- C:\Users\Public\Desktop\Skype.lnk [2012/02/10 12:28:29 \| 000,002,158 \| ---- \| M] () -- C:\Users\Public\Desktop\Play Stronghold 2.lnk [1 C:\Windows\.tmp files -> C:\Windows\.tmp -> ] ========== Files Created - No Company Name ========== [2012/03/10 22:48:09 \| 000,001,168 \| ---- \| C] () -- C:\Users\Public\Desktop\Camtasia Studio 7.lnk [2012/03/10 20:06:55 \| 002,190,419 \| ---- \| C] () -- C:\Users\marko\Fraps.zip [2012/03/10 20:06:33 \| 002,609,266 \| ---- \| C] () -- C:\Users\marko\fraps 3.4.7 registered[A4].zip [2012/03/10 20:02:29 \| 049,947,614 \| ---- \| C] () -- C:\Users\marko\Documents\clip0016.avi [2012/03/10 20:02:16 \| 001,242,064 \| ---- \| C] () -- C:\Users\marko\Documents\clip0015.avi [2012/03/09 22:46:47 \| 000,067,152 \| ---- \| C] () -- C:\Users\marko\Desktop\PECKO.EXE [2012/03/09 18:41:21 \| 013,648,076 \| ---- \| C] () -- C:\Users\marko\Desktop\filelist.pak [2012/03/09 18:16:09 \| 000,002,056 \| ---- \| C] () -- C:\Users\Public\Desktop\Rockstar Games Social Club.lnk [2012/03/09 17:31:15 \| 000,002,200 \| ---- \| C] () -- C:\Users\Public\Desktop\Grand Theft Auto IV.lnk [2012/03/09 17:04:39 \| 000,594,605 \| R--- \| C] () -- C:\Users\marko\Desktop\popcycle.dat [2012/03/09 16:46:52 \| 000,026,768 \| ---- \| C] () -- C:\Users\marko\Documents\cc_20120309_164647.reg [2012/03/09 16:45:47 \| 000,000,822 \| ---- \| C] () -- C:\Users\Public\Desktop\CCleaner.lnk [2012/03/07 18:37:54 \| 000,000,542 \| ---- \| C] () -- C:\Users\marko\AppData\Local\UserProducts.xml [2012/03/07 18:37:53 \| 000,000,388 \| ---- \| C] () -- C:\Windows\tasks\update-S-1-5-21-2118509853-3602802942-1037269567-1000.job [2012/03/07 18:37:49 \| 000,000,388 \| ---- \| C] () -- C:\Windows\tasks\update-sys.job [2012/03/07 15:15:56 \| 3376,740,307 \| ---- \| C] () -- C:\Users\marko\The Dark Knight.mkv [2012/03/02 17:17:40 \| 000,017,720 \| ---- \| C] () -- C:\Windows\SysNative\drivers\SmartDefragDriver.sys [2012/02/29 21:02:38 \| 000,001,841 \| ---- \| C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk [2012/02/29 21:02:24 \| 000,000,000 \| ---- \| C] () -- C:\Windows\SysWow64\config.nt [2012/02/28 17:55:22 \| 001,120,120 \| ---- \| C] () -- C:\Users\marko\Documents\clip0014.avi [2012/02/28 17:54:31 \| 002,143,356 \| ---- \| C] () -- C:\Users\marko\Documents\clip0013.avi [2012/02/28 17:53:53 \| 000,792,718 \| ---- \| C] () -- C:\Users\marko\Documents\clip0012.avi [2012/02/28 17:45:47 \| 030,033,488 \| ---- \| C] () -- C:\Users\marko\Documents\clip0011.avi [2012/02/28 17:44:57 \| 038,486,990 \| ---- \| C] () -- C:\Users\marko\Documents\clip0010.avi [2012/02/28 17:08:12 \| 000,692,224 \| ---- \| C] () -- C:\Windows\SysWow64\bsrmgcv.dll [2012/02/28 17:08:12 \| 000,192,512 \| ---- \| C] () -- C:\Windows\SysWow64\bsrmgps.dll [2012/02/28 17:08:12 \| 000,098,304 \| ---- \| C] () -- C:\Windows\SysWow64\bsreffs.dll [2012/02/28 17:08:12 \| 000,090,112 \| ---- \| C] () -- C:\Windows\SysWow64\bsrlback.dll [2012/02/28 17:08:12 \| 000,081,920 \| ---- \| C] () -- C:\Windows\SysWow64\bsrgvas.dll [2012/02/28 17:08:07 \| 000,585,728 \| ---- \| C] () -- C:\Windows\SysWow64\bsratswf.dll [2012/02/28 17:08:07 \| 000,147,456 \| ---- \| C] () -- C:\Windows\SysWow64\bsratwmv.dll [2012/02/28 16:36:55 \| 000,007,680 \| ---- \| C] () -- C:\Users\marko\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012/02/27 16:51:44 \| 000,001,338 \| ---- \| C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live ID.lnk [2012/02/25 00:02:51 \| 000,001,146 \| ---- \| C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk [2012/02/25 00:02:51 \| 000,001,134 \| ---- \| C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2012/02/24 21:31:41 \| 000,985,876 \| ---- \| C] () -- C:\Users\marko\Documents\clip0009.avi [2012/02/23 22:20:40 \| 000,017,326 \| R--- \| C] () -- C:\Windows\SysNative\netathurx.inf [2012/02/23 22:20:40 \| 000,007,484 \| ---- \| C] () -- C:\Windows\SysNative\athurextx.cat [2012/02/22 21:13:15 \| 000,000,000 \| ---- \| C] () -- C:\ProgramData\6151927a8f178f89eea5403497c2bbc8_c [2012/02/21 21:40:20 \| 187,428,990 \| ---- \| C] () -- C:\Users\marko\Documents\clip0008.avi [2012/02/21 21:40:12 \| 011,094,330 \| ---- \| C] () -- C:\Users\marko\Documents\clip0007.avi [2012/02/21 21:31:27 \| 314,856,306 \| ---- \| C] () -- C:\Users\marko\Documents\asd.avi [2012/02/21 21:10:47 \| 430,835,252 \| ---- \| C] () -- C:\Users\marko\Documents\za sinisu.avi [2012/02/21 21:10:20 \| 078,955,714 \| ---- \| C] () -- C:\Users\marko\Documents\clip0006.avi [2012/02/21 21:10:07 \| 012,158,852 \| ---- \| C] () -- C:\Users\marko\Documents\clip0005.avi [2012/02/21 21:09:46 \| 011,972,204 \| ---- \| C] () -- C:\Users\marko\Documents\clip0004.avi [2012/02/21 21:09:32 \| 011,303,660 \| ---- \| C] () -- C:\Users\marko\Documents\clip0003.avi [2012/02/21 21:06:44 \| 429,336,960 \| ---- \| C] () -- C:\Users\marko\Documents\clip0002.avi [2012/02/21 21:04:14 \| 213,953,666 \| ---- \| C] () -- C:\Users\marko\Documents\clip0001.avi [2012/02/21 20:13:48 \| 000,000,928 \| ---- \| C] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2118509853-3602802942-1037269567-1000UA.job [2012/02/21 20:13:48 \| 000,000,906 \| ---- \| C] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2118509853-3602802942-1037269567-1000Core.job [2012/02/21 19:12:02 \| 000,002,110 \| ---- \| C] () -- C:\Users\Public\Desktop\MorphVOX Pro.lnk [2012/02/18 11:35:48 \| 000,001,160 \| ---- \| C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity 1.3 Beta (Unicode).lnk [2012/02/18 11:35:48 \| 000,001,148 \| ---- \| C] () -- C:\Users\marko\Desktop\Audacity 1.3 Beta (Unicode).lnk [2012/02/14 16:25:27 \| 000,000,000 \| -H-- \| C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf [2012/02/14 11:47:16 \| 000,002,515 \| ---- \| C] () -- C:\Users\Public\Desktop\Skype.lnk [2012/02/10 19:00:16 \| 000,002,519 \| ---- \| C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk [2012/02/10 11:35:42 \| 000,002,158 \| ---- \| C] () -- C:\Users\Public\Desktop\Play Stronghold 2.lnk [2012/02/06 15:55:47 \| 000,772,558 \| ---- \| C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2012/02/05 22:51:45 \| 000,001,769 \| ---- \| C] () -- C:\Windows\Language_trs.ini [2012/02/04 21:55:18 \| 000,000,910 \| ---- \| C] () -- C:\Windows\ARPR.INI [2012/01/29 22:54:34 \| 000,000,000 \| ---- \| C] () -- C:\Windows\ativpsrm.bin [2011/12/06 03:35:10 \| 000,204,960 \| ---- \| C] () -- C:\Windows\SysWow64\ativvsvl.dat [2011/12/06 03:35:10 \| 000,157,152 \| ---- \| C] () -- C:\Windows\SysWow64\ativvsva.dat [2011/12/05 22:04:00 \| 000,059,904 \| ---- \| C] () -- C:\Windows\SysWow64\OpenVideo.dll [2011/12/05 22:03:52 \| 000,054,784 \| ---- \| C] () -- C:\Windows\SysWow64\OVDecode.dll [2011/09/28 17:44:14 \| 000,179,271 \| ---- \| C] () -- C:\Windows\SysWow64\xlive.dll.cat [2011/09/13 00:06:16 \| 000,003,917 \| ---- \| C] () -- C:\Windows\SysWow64\atipblag.dat ========== Alternate Data Streams ========== @Alternate Data Stream - 144 bytes -> C:\ProgramData\TEMP:05EE1EEF < End of report > Dopuna: 10 Mar 2012 23:30 Mislim da je sada sve uredu izbrisao sam adon

Profil

NIx Car Poslao: 11 Mar 2012 20:18 Idi na vrh
offline NIx Car Legendarni građanin Més que un club Glavni vokal @ Harpun Pridružio: 27 Feb 2009 Poruke: 3898 Gde živiš: Novi Sad,Klisa	1Ovo se svidja korisniku: mcrule Registruj se da bi pohvalio/la poruku! Izvini na čekanju... Zamolio bih te da postaviš svež OTL log. NIx Car (AMF Tim)

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Virus sa fb-a

Ko je trenutno na forumu

Ukupno su 890 korisnika na forumu :: 37 registrovanih, 5 sakrivenih i 848 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: 357magnum, 8u47, A.R.Chafee.Jr., airsuba, Aleksandar Tomić, amaterSRB, Arahne, ccoogg123, Denaya, Dorcolac, Dukelander, dule10savic, esx66, Georgius, goxin, JOntra, kjkszpj, kolle.the.kid, mikrimaus, Mixelotti, mnn2, nemkea71, NoOneEver Dreams, Parker, raptorsi, RJ, rovac, samsung, Sančo, Sumadija34, Trpe Grozni, Tvrtko I, virked, Vlada1389, VP6919, |_MeD_|, šumar bk2

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by