MyCity » Ambulanta -> Arhiva Ambulante » Antivirus blokira URL adrese i gasi mi se internet

Antivirus blokira URL adrese i gasi mi se internet

Napisano na dan: 19.7.2015

Antivirus blokira URL adrese i gasi mi se internet

Sledeća strana

Pagination

Odgovori

rintintin Poslao: 19 Jul 2015 10:30 Idi na vrh
offline rintintin Zaslužni građanin Pridružio: 25 Okt 2010 Poruke: 595 Gde živiš: Pomoravlje	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Zadnjih nekoliko dana Antivirus blokira URL adrese i ugasi mi se internet na svakih sat-dva... U Antivirusu sam našao blokirane adrese i program ili šta je već koji ne mogu da deinstaliram, zove se CinemaP. Evo kopiranih blokiranih URL adresa, slike na kojoj je program CinemaP koji ne mogu da deinstaliram i FRST.txt i Addition.txt izveštaj: Blokirane URL iz Antivirusa: 19.7.2015 9:30:05 http://errors.keyprobox.com/utility.gif?action=OnN.....;rand=4516 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.12.140 19.7.2015 9:30:04 http://notif.keyprobox.com/notf_sys/index.html?rnd=6242 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.42 18.7.2015 23:30:03 http://errors.keyprobox.com/utility.gif?action=OnN.....;rand=9728 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.8.76 18.7.2015 23:30:02 http://notif.keyprobox.com/notf_sys/index.html?rnd=1192 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.42 18.7.2015 22:30:02 http://errors.keyprobox.com/utility.gif?action=OnN.....mp;rand=62 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.80.90 18.7.2015 22:30:02 http://notif.keyprobox.com/notf_sys/index.html?rnd=1560 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.10 18.7.2015 22:30:00 http://logs.keyprobox.com/monetization.gif?event=7.....;rand=2173 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.10 18.7.2015 21:30:03 http://errors.keyprobox.com/utility.gif?action=OnN.....p;rand=625 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.13.140 18.7.2015 21:30:02 http://notif.keyprobox.com/notf_sys/index.html?rnd=7521 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.42 18.7.2015 20:30:03 http://errors.keyprobox.com/utility.gif?action=OnN.....;rand=2457 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.10.68 18.7.2015 20:30:02 http://notif.keyprobox.com/notf_sys/index.html?rnd=4301 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.42 18.7.2015 19:30:03 http://errors.keyprobox.com/utility.gif?action=OnN.....;rand=4289 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.8.100 18.7.2015 19:30:02 http://notif.keyprobox.com/notf_sys/index.html?rnd=1082 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.42 18.7.2015 18:30:03 http://errors.keyprobox.com/utility.gif?action=OnN.....;rand=6122 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.18.164 18.7.2015 18:30:03 http://notif.keyprobox.com/notf_sys/index.html?rnd=630 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.10 18.7.2015 17:30:03 http://errors.keyprobox.com/utility.gif?action=OnN.....;rand=7954 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.14.20 18.7.2015 17:30:03 http://notif.keyprobox.com/notf_sys/index.html?rnd=7411 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.42 18.7.2015 16:30:03 http://errors.keyprobox.com/utility.gif?action=OnN.....;rand=9787 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.16.220 18.7.2015 16:30:02 http://notif.keyprobox.com/notf_sys/index.html?rnd=6959 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.42 18.7.2015 15:30:03 http://errors.keyprobox.com/utility.gif?action=OnN.....p;rand=925 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.64.252 18.7.2015 15:30:03 http://notif.keyprobox.com/notf_sys/index.html?rnd=4731 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.10 18.7.2015 15:30:01 http://logs.keyprobox.com/monetization.gif?event=7.....;rand=5420 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.10 18.7.2015 14:30:03 http://errors.keyprobox.com/utility.gif?action=OnN.....;rand=3451 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.16.244 18.7.2015 14:30:02 http://notif.keyprobox.com/notf_sys/index.html?rnd=520 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.10 18.7.2015 13:30:02 http://errors.keyprobox.com/utility.gif?action=OnN.....;rand=5284 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.1.148 18.7.2015 13:30:02 http://notif.keyprobox.com/notf_sys/index.html?rnd=69 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.10 18.7.2015 12:30:04 http://errors.keyprobox.com/utility.gif?action=OnN.....p;rand=229 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.2.204 18.7.2015 12:30:03 http://notif.keyprobox.com/notf_sys/index.html?rnd=776 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.10 18.7.2015 11:36:45 http://errors.keyprobox.com/utility.gif?action=OnN.....;rand=8811 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.17.188 18.7.2015 11:36:44 http://notif.keyprobox.com/notf_sys/index.html?rnd=5697 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.10 18.7.2015 10:30:56 http://notif.keyprobox.com/favicon.ico PUA crna lista je blokirala adresu C:\Program Files\Mozilla Firefox\firefox.exe User-PC\User 69.16.175.42 18.7.2015 10:30:56 http://notif.keyprobox.com/favicon.ico PUA crna lista je blokirala adresu C:\Program Files\Mozilla Firefox\firefox.exe User-PC\User 69.16.175.42 18.7.2015 10:30:56 http://notif.keyprobox.com PUA crna lista je blokirala adresu C:\Program Files\Mozilla Firefox\firefox.exe User-PC\User 69.16.175.42 18.7.2015 10:30:03 http://errors.keyprobox.com/utility.gif?action=OnN.....p;rand=781 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.9.4 18.7.2015 10:30:03 http://notif.keyprobox.com/notf_sys/index.html?rnd=3178 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.10 18.7.2015 9:30:03 http://errors.keyprobox.com/utility.gif?action=OnN.....;rand=2613 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.2.196 18.7.2015 9:30:02 http://notif.keyprobox.com/notf_sys/index.html?rnd=2726 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.10 18.7.2015 8:37:53 http://errors.keyprobox.com/utility.gif?action=OnN.....;rand=3956 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.15.28 18.7.2015 8:37:52 http://notif.keyprobox.com/notf_sys/index.html?rnd=4622 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 127.0.0.1 18.7.2015 8:35:51 http://logs.keyprobox.com/monetization.gif?event=7.....;rand=2473 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.10 17.7.2015 23:30:03 http://errors.keyprobox.com/utility.gif?action=OnN.....;rand=8169 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.2.188 17.7.2015 23:30:02 http://notif.keyprobox.com/notf_sys/index.html?rnd=1603 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.42 17.7.2015 22:30:03 http://errors.keyprobox.com/utility.gif?action=OnN.....amp;rand=1 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.16.12 17.7.2015 22:30:02 http://notif.keyprobox.com/notf_sys/index.html?rnd=8383 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.10 17.7.2015 21:30:03 http://errors.keyprobox.com/utility.gif?action=OnN.....;rand=1834 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.19.12 17.7.2015 21:30:02 http://notif.keyprobox.com/notf_sys/index.html?rnd=5164 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.10 17.7.2015 20:30:02 http://errors.keyprobox.com/utility.gif?action=OnN.....;rand=6975 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.0.220 17.7.2015 20:30:02 http://notif.keyprobox.com/notf_sys/index.html?rnd=3666 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.10 17.7.2015 20:30:01 http://logs.keyprobox.com/monetization.gif?event=7.....;rand=1427 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.10 17.7.2015 19:30:03 http://errors.keyprobox.com/utility.gif?action=OnN.....;rand=5499 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.17.212 17.7.2015 19:30:02 http://notif.keyprobox.com/notf_sys/index.html?rnd=1493 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.42 17.7.2015 18:30:02 http://errors.keyprobox.com/utility.gif?action=OnN.....;rand=7331 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.48.74 17.7.2015 18:30:02 http://notif.keyprobox.com/notf_sys/index.html?rnd=1041 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.42 17.7.2015 17:30:03 http://errors.keyprobox.com/utility.gif?action=OnN.....;rand=9163 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.16.212 17.7.2015 17:30:03 http://notif.keyprobox.com/notf_sys/index.html?rnd=7822 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.42 17.7.2015 16:30:02 http://errors.keyprobox.com/utility.gif?action=OnN.....p;rand=996 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.15.12 17.7.2015 16:30:02 http://notif.keyprobox.com/notf_sys/index.html?rnd=4602 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.42 17.7.2015 15:30:02 http://errors.keyprobox.com/utility.gif?action=OnN.....;rand=2828 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.14.36 17.7.2015 15:30:02 http://notif.keyprobox.com/notf_sys/index.html?rnd=4151 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.42 17.7.2015 15:11:10 http://errors.keyprobox.com/utility.gif?action=OnN.....;rand=9207 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.8.44 17.7.2015 15:11:09 http://notif.keyprobox.com/notf_sys/index.html?rnd=5231 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.42 17.7.2015 13:30:04 http://errors.keyprobox.com/utility.gif?action=OnN.....p;rand=607 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.16.244 17.7.2015 13:30:04 http://notif.keyprobox.com/notf_sys/index.html?rnd=9605 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.42 17.7.2015 13:30:02 http://logs.keyprobox.com/monetization.gif?event=7.....;rand=4674 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.42 17.7.2015 12:44:51 http://errors.keyprobox.com/utility.gif?action=OnN.....;rand=5462 PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 54.231.10.204 17.7.2015 12:44:50 http://notif.keyprobox.com/notf_sys/index.html?rnd=3067&afterrestart=true PUA crna lista je blokirala adresu C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe User-PC\User 69.16.175.10 7.7.2015 10:17:38 http://notif.keyprobox.com/notf_sys/uninstall_offer/4.htm?rnd=1436257058576¬ifname=doctorpc_ob&download_url=http://getr.file8desktop.com/22222222222222/downloadmanager/get56?p__EQU_REPLACEMENT__19363__AMP_REPLACEMENT__d__EQU_REPLACEMENT__27712__AMP_REPLACEMENT__l__EQU_REPLACEMENT__26943__AMP_REPLACEMENT__n__EQU_REPLACEMENT__1 productname__EQU_REPLACEMENT__Reimage__AMP_REPLACEMENT__filename__EQU_REPLACEMENT__Reimage¬ifid=6&randindex=94&onerrorexe=C:\Program Files\CinemaP-1.9cV07.07\utils.exe PUA crna lista je blokirala adresu C:\Users\User\AppData\Local\Temp\9034.exe User-PC\User 69.16.175.42 7.7.2015 10:15:43 http://notif.keyprobox.com/notf_sys/uninstall_offer/4.htm?rnd=1436256943017¬ifname=doctorpc_ob&download_url=http://getr.file8desktop.com/22222222222222/downloadmanager/get56?p__EQU_REPLACEMENT__19363__AMP_REPLACEMENT__d__EQU_REPLACEMENT__27712__AMP_REPLACEMENT__l__EQU_REPLACEMENT__26943__AMP_REPLACEMENT__n__EQU_REPLACEMENT__1 productname__EQU_REPLACEMENT__Reimage__AMP_REPLACEMENT__filename__EQU_REPLACEMENT__Reimage¬ifid=6&randindex=94&onerrorexe=C:\Program Files\CinemaP-1.9cV07.07\utils.exe PUA crna lista je blokirala adresu C:\Users\User\AppData\Local\Temp\8580.exe User-PC\User 69.16.175.42 7.7.2015 10:05:56 http://mymediadownloadsnine.com/download.php?versi.....pname]=Put Carobnjaka Pdf Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1200214520.exe&instid[cmdline]=&instid[appimageurl]=http://promptdownloader.com/logo.png&prefix=Put Carobnjaka Pdf Downloader&instid[interrupted]=http://promptdownloader.com/?cancel&ti1=1200214520&instid[thankyoupage]=http://promptdownloader.com/?success PUA crna lista je blokirala adresu C:\Program Files\Mozilla Firefox\firefox.exe User-PC\User 95.211.148.47 7.7.2015 8:45:29 http://notif.keyprobox.com/notf_sys/uninstall_offer/4.htm?rnd=1436251529327¬ifname=doctorpc_ob&download_url=http://getr.file8desktop.com/22222222222222/downloadmanager/get56?p__EQU_REPLACEMENT__19363__AMP_REPLACEMENT__d__EQU_REPLACEMENT__27712__AMP_REPLACEMENT__l__EQU_REPLACEMENT__26943__AMP_REPLACEMENT__n__EQU_REPLACEMENT__1 productname__EQU_REPLACEMENT__Reimage__AMP_REPLACEMENT__filename__EQU_REPLACEMENT__Reimage¬ifid=6&randindex=94&onerrorexe=C:\Program Files\CinemaP-1.9cV07.07\utils.exe PUA crna lista je blokirala adresu C:\Users\User\AppData\Local\Temp\962.exe User-PC\User 69.16.175.10 7.7.2015 8:27:30 http://mymediadownloadsnine.com/favicon.ico PUA crna lista je blokirala adresu C:\Program Files\Mozilla Firefox\firefox.exe User-PC\User 95.211.148.47 7.7.2015 8:27:30 http://mymediadownloadsnine.com/favicon.ico PUA crna lista je blokirala adresu C:\Program Files\Mozilla Firefox\firefox.exe User-PC\User 95.211.148.47 7.7.2015 8:27:30 http://mymediadownloadsnine.com/download.php?versi.....pname]=Put Carobnjaka Pdf Downloader&instid[appsetupurl]=http://fastmediadownloads.com/download/Prompt-Downloader-1200214520.exe&instid[cmdline]=&instid[appimageurl]=http://promptdownloader.com/logo.png&prefix=Put Carobnjaka Pdf Downloader&instid[interrupted]=http://promptdownloader.com/?cancel&ti1=1200214520&instid[thankyoupage]=http://promptdownloader.com/?success PUA crna lista je blokirala adresu C:\Program Files\Mozilla Firefox\firefox.exe User-PC\User 95.211.148.47 7.7.2015 8:27:01 http://downprov.brown1switch.com/direct?version=1......6025+00:00¶meter=put+carobnjaka+pdf&instid[interrupted]=http://download.bestsoftwarelive.com/afterinstall/interrupted.php?ti1=5820000&ti2=2&ti3=2015-07-07T06:26:18.126025+00:00¶meter=put+carobnjaka+pdf&ti1=5820000&ti2=2&ti3=2015-07-07T06:26:18.126025+00:00&_dest=files.red-4-small-button.com PUA crna lista je blokirala adresu C:\Program Files\Mozilla Firefox\firefox.exe User-PC\User 104.28.30.40 7.7.2015 8:26:42 http://downprov.brown1switch.com/direct?version=1......6025+00:00¶meter=put+carobnjaka+pdf&instid[interrupted]=http://download.bestsoftwarelive.com/afterinstall/interrupted.php?ti1=5820000&ti2=2&ti3=2015-07-07T06:26:18.126025+00:00¶meter=put+carobnjaka+pdf&ti1=5820000&ti2=2&ti3=2015-07-07T06:26:18.126025+00:00&_dest=files.red-4-small-button.com PUA crna lista je blokirala adresu C:\Program Files\Mozilla Firefox\firefox.exe User-PC\User 104.28.30.40 7.7.2015 8:26:23 http://downprov.brown1switch.com/direct?version=1......6025+00:00¶meter=put+carobnjaka+pdf&instid[interrupted]=http://download.bestsoftwarelive.com/afterinstall/interrupted.php?ti1=5820000&ti2=2&ti3=2015-07-07T06:26:18.126025+00:00¶meter=put+carobnjaka+pdf&ti1=5820000&ti2=2&ti3=2015-07-07T06:26:18.126025+00:00&_dest=files.red-4-small-button.com PUA crna lista je blokirala adresu C:\Program Files\Mozilla Firefox\firefox.exe User-PC\User 104.28.30.40 27.6.2015 15:28:26 http://downprov.brown1switch.com/direct?version=1......7928+00:00¶meter=Osho+knjige+pdf&instid[interrupted]=http://download.bentdownload.com/afterinstall/interrupted.php?ti1=2565000&ti2=0&ti3=2015-06-27T13:28:16.567928+00:00¶meter=Osho+knjige+pdf&ti1=2565000&ti2=0&ti3=2015-06-27T13:28:16.567928+00:00&_dest=files.red-4-small-button.com PUA crna lista je blokirala adresu C:\Program Files\Mozilla Firefox\firefox.exe User-PC\User 104.28.30.40 29.5.2015 22:12:45 http://www.superfish.com/ws/sf_main.jsp?dlsource=x.....CTID=xn-cr Interna crna lista je blokirala adresu C:\Program Files\Google\Chrome\Application\chrome.exe User-PC\User 29.5.2015 22:12:43 http://www.superfish.com/ws/sf_main.jsp?dlsource=x.....CTID=xn-cr Interna crna lista je blokirala adresu C:\Program Files\Google\Chrome\Application\chrome.exe User-PC\User Sadržaj FRST.txt: Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 18-07-2015 01 Ran by User (administrator) on USER-PC on 19-07-2015 10:17:02 Running from C:\Users\User\Desktop Loaded Profiles: User (Available Profiles: User) Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) OS Language: English (United States) Internet Explorer Version 11 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Comodo Security Solutions, Inc.) C:\Program Files\Common Files\COMODO\launcher_service.exe (COMODO) C:\Program Files\Comodo\COMODO Internet Security\cmdagent.exe (AMD) C:\Windows\System32\atiesrxx.exe (FSPro Labs) C:\Windows\System32\fsproflt2.exe (AMD) C:\Windows\System32\atieclxx.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (FSPro Labs) C:\Program Files\Hide Folders 2012\hf.exe (Comodo) C:\Program Files\Comodo\Chromodo\chromodo_updater.exe (Zemana Ltd.) C:\Program Files\AntiLogger\AntiLogger.exe (ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (H.D.S. Hungary) C:\Program Files\Hard Disk Sentinel\HDSentinel.exe (ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (Bitsum LLC) C:\Program Files\Process Lasso\ProcessLasso.exe (Flux Software LLC) C:\Users\User\AppData\Local\FluxSoftware\Flux\flux.exe (Bitsum LLC) C:\Program Files\Process Lasso\ProcessGovernor.exe (Greatis Software) C:\Program Files\UnHackMe\hackmon.exe (MyCity) C:\Program Files\MCShield\MCShieldRTM.exe (Foxit Software Inc.) C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe (Comodo Security Solutions, Inc.) C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe (Steganos Software GmbH) C:\Program Files\OkayFreedom\OkayFreedomService.exe (O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe () C:\Program Files\CyberLink\Shared files\RichVideo.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe (Zemana Ltd.) C:\Program Files\Zemana AntiMalware\ZAM.exe (Hide My IP) C:\Program Files\Hide My IP 6\HideMyIpSrv.exe (COMODO) C:\Program Files\Comodo\COMODO Internet Security\cavwp.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (COMODO) C:\Program Files\Comodo\COMODO Internet Security\cistray.exe (COMODO) C:\Program Files\Comodo\COMODO Internet Security\cis.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [AntiLogger] => C:\Program Files\AntiLogger\AntiLogger.exe [14268328 2015-01-06] (Zemana Ltd.) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5088456 2015-01-28] (ESET) HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1361088 2015-06-10] (COMODO) HKU\S-1-5-21-1070079461-1854531565-2532256052-1001\...\Run: [f.lux] => C:\Users\User\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-24] (Flux Software LLC) HKU\S-1-5-21-1070079461-1854531565-2532256052-1001\...\Run: [MCShield Monitor] => C:\Program Files\MCShield\mcshieldrtm.exe [650816 2015-01-22] (MyCity) HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2014-11-03] (Microsoft Corporation) ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-11] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-11] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-11] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-11] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-11] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-11] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-11] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-11] (Dropbox, Inc.) BootExecute: autocheck autochk * Partizan ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) AutoConfigURL: [S-1-5-21-1070079461-1854531565-2532256052-1001] => http://127.0.0.1:8445/okf.pac HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com HKU\S-1-5-21-1070079461-1854531565-2532256052-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: RoboForm Toolbar Helper -> {724d43a9-0d85-11d4-9908-00400523e39a} -> C:\Program Files\Siber Systems\AI RoboForm\roboform.dll [2015-03-27] (Siber Systems Inc.) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-04-15] (Oracle Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-15] (Oracle Corporation) Toolbar: HKLM - &RoboForm Toolbar - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll [2015-03-27] (Siber Systems Inc.) Toolbar: HKLM - Steganos Password Manager Toolbar - {9C65D12D-CF9D-454D-8049-61965D8C6FFF} - C:\Program Files\Steganos Password Manager 15\SPMIEToolbar.dll [2014-06-25] (Steganos Software GmbH) Winsock: Catalog9 01 C:\Windows\system32\HMIPCore.dll [353280 2015-05-03] (Hide My IP) Winsock: Catalog9 02 C:\Windows\system32\HMIPCore.dll [353280 2015-05-03] (Hide My IP) Winsock: Catalog9 03 C:\Windows\system32\HMIPCore.dll [353280 2015-05-03] (Hide My IP) Winsock: Catalog9 04 C:\Windows\system32\HMIPCore.dll [353280 2015-05-03] (Hide My IP) Winsock: Catalog9 29 C:\Windows\system32\HMIPCore.dll [353280 2015-05-03] (Hide My IP) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{27DB96F1-99B1-4E5E-B755-E421964F497B}: [NameServer] 156.154.70.25,156.154.71.25 Tcpip\..\Interfaces\{F58F733E-0A95-4E54-B3F8-4A4BFEEE2840}: [NameServer] 156.154.70.25,156.154.71.25 Tcpip\..\Interfaces\{F58F733E-0A95-4E54-B3F8-4A4BFEEE2840}: [DhcpNameServer] 192.168.1.1 StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\p33qd9pn.default FF Homepage: https://www.google.rs/ FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-15] () FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-05-25] (Foxit Corporation) FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-05-25] (Foxit Corporation) FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-05-25] (Foxit Corporation) FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-05-25] (Foxit Corporation) FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-15] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-15] (Oracle Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.) FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\pogodakyu.xml [2015-05-23] FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\vokabular.xml [2015-05-23] FF Extension: Qualys BrowserCheck - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\p33qd9pn.default\Extensions\{7D2FB79E-E58C-4DB5-A36F-AC1C73967F4D} [2015-02-25] FF Extension: Unseen - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\p33qd9pn.default\Extensions\unseen@tangrs.xpi [2015-06-03] FF Extension: Yet Another Smooth Scrolling - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\p33qd9pn.default\Extensions\yetanothersmoothscrolling@kataho.xpi [2015-02-25] FF Extension: X-notifier - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\p33qd9pn.default\Extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [2015-02-25] FF Extension: Adblock Plus - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\p33qd9pn.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-02-25] FF HKLM\...\Firefox\Extensions: [{00F0643E-B367-4779-B45D-7046EBA37A88}] - C:\Program Files\Steganos Password Manager 15\spmplugin3 FF Extension: Steganos Password Manager - C:\Program Files\Steganos Password Manager 15\spmplugin3 [2015-05-03] Chrome: ======= CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Slides) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-11-03] CHR Extension: (Google Docs) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-11-03] CHR Extension: (Google Drive) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-11-03] CHR Extension: (OkayFreedom) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bckipplcmnfhblnpibpbehenelnkpecd [2014-12-24] CHR Extension: (Facebook Auto Poster and Scheduler) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgbkbddnmplgngbbipkophmcangiahja [2015-03-09] CHR Extension: (The Latest Versions of Google Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bibclkcoilbnbnppanidhimphmfbjaab [2014-11-05] CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-11-03] CHR Extension: (X-notifier (for Gmail™,Hotmail,Yahoo,AOL...)) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdfjbkbddpfnoplfhceolpopfoepleco [2014-11-03] CHR Extension: (Google Search) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-11-03] CHR Extension: (Qualys BrowserCheck for Windows) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejhnkognlohdkpjkjongioociddgoibk [2015-04-18] CHR Extension: (Google Sheets) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-11-03] CHR Extension: (Steganos Password Manager) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\flbkoklcepefekfcdjlabencimigaahd [2015-05-03] CHR Extension: (Sticky Password Autofill Engine) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggepjhbdgijjkbelnggboeoehacbphed [2015-01-09] CHR Extension: (AdBlock) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-11-03] CHR Extension: (Facebook Unseen) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\iicapmagmhahddefgokbabbgieiogjop [2014-11-26] CHR Extension: (Chromium Wheel Smooth Scroller) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\khpcanbeojalbkpgpmjpdkjnkfcgfkhb [2014-11-03] CHR Extension: (Google Wallet) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-03] CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-11-03] CHR Extension: (RoboForm Password Manager) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnlccmojcmeohlpggmfnbbiapkmbliob [2015-03-27] CHR HKLM\...\Chrome\Extension: [pnlccmojcmeohlpggmfnbbiapkmbliob] - C:\Program Files\Siber Systems\AI RoboForm\Chrome\rf-chrome.crx [2015-03-27] Opera: ======= OPR Extension: (CinemaP-1.9cV16.03) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\acklnhgjphbhhomkneonohbjnbmkclfb [2015-03-20] OPR Extension: (Scroller) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\bkpccplbhceehekmcgbhijfjnfbkehpi [2015-02-10] OPR Extension: (Gmail Notifier) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\flkijckbigolpahbkklilflpmkalfohc [2015-02-10] OPR Extension: (Ge-Force) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\jhongheibdpfhdpfccheljfcabgliidh [2015-03-20] OPR Extension: (Sense) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\knlpigpfaognbholppaembpfphilacie [2015-03-20] OPR Extension: (CinemaP-1.9cV07.07) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi [2015-07-07] OPR Extension: (Adblock Plus) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2015-02-10] ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 ChromodoUpdater; C:\Program Files\Comodo\Chromodo\chromodo_updater.exe [1995448 2015-06-23] (Comodo) R2 CLPSLauncher; C:\Program Files\Common Files\COMODO\launcher_service.exe [70864 2014-09-25] (Comodo Security Solutions, Inc.) R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [4352816 2015-06-10] (COMODO) S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [1664704 2015-06-10] (COMODO) R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [1349576 2015-01-28] (ESET) R2 FoxitCloudUpdateService; C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [244392 2015-05-25] (Foxit Software Inc.) R2 fsproflt2; C:\Windows\system32\fsproflt2.exe [69408 2014-10-06] (FSPro Labs) R2 GeekBuddyRSP; C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2014-09-24] (Comodo Security Solutions, Inc.) R3 HideMyIpSRV; C:\Program Files\Hide My IP 6\HideMyIpSRV.exe [4341760 2015-05-22] (Hide My IP) [File not signed] S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-07-01] (Malwarebytes Corporation) R2 OkayFreedom VPN Starter Service; C:\Program Files\OkayFreedom\OkayFreedomService.exe [345632 2015-07-16] (Steganos Software GmbH) R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [1387816 2014-12-13] (O&O Software GmbH) R2 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [253776 2015-02-18] () R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-11] (TeamViewer GmbH) R2 tvnserver; C:\Program Files\TightVNC\tvnserver.exe [1690096 2014-12-23] (GlavSoft LLC.) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation) S2 WiseBootAssistant; C:\Program Files\Wise\Wise Care 365\BootTime.exe [580232 2015-01-09] (WiseCleaner.com) [File not signed] R2 ZAMSvc; C:\Program Files\Zemana AntiMalware\ZAM.exe [11800944 2015-04-18] (Zemana Ltd.) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 ACPIVPC; C:\Windows\System32\DRIVERS\AcpiVpc.sys [23136 2010-01-20] (Lenovo Corporation) R3 amdkmdag; C:\Windows\System32\DRIVERS\atipmdag.sys [5340160 2010-03-03] (ATI Technologies Inc.) R1 AntiLog32; C:\Windows\system32\drivers\AntiLog32.sys [80104 2015-01-06] (Zemana Ltd.) R3 Cam5607; C:\Windows\System32\Drivers\BisonC07.sys [1261680 2009-12-01] (Bison Electronics. Inc. ) R1 CFRMD; C:\Windows\System32\DRIVERS\CFRMD.sys [35064 2014-06-26] (Windows (R) Win 7 DDK provider) R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [17064 2015-06-05] (COMODO) R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [621120 2015-06-05] (COMODO) R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [41224 2015-06-05] (COMODO) R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [193464 2015-03-10] (ESET) R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [135808 2015-03-10] (ESET) R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [123424 2015-03-10] (ESET) S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [15968 2014-11-18] () S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [10208 2014-11-18] () R0 FSProFilter2; C:\Windows\System32\Drivers\FSPFltd2.sys [51760 2011-06-04] (FSPro Labs) R1 HMD; C:\Windows\System32\DRIVERS\hmd.sys [15400 2014-06-26] () R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [91176 2015-06-05] (COMODO) R1 ISODrive; C:\Program Files\UltraISO\drivers\ISODrive.sys [73728 2008-05-24] (EZB Systems, Inc.) [File not signed] R3 L1C; C:\Windows\System32\DRIVERS\L1C62x86.sys [109256 2014-11-07] (Qualcomm Atheros Co., Ltd.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-07-01] (Malwarebytes Corporation) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-07-01] (Malwarebytes Corporation) R1 mse; C:\Windows\System32\drivers\mse.sys [44216 2015-01-10] (Windows (R) Win 7 DDK provider) U0 Partizan; C:\Windows\System32\drivers\Partizan.sys [35816 2015-01-03] (Greatis Software) R2 PfFilter; C:\Program Files\IObit\Protected Folder\pffilter.sys [33224 2012-11-23] (IObit Information Technology) R1 SCDEmu; C:\Windows\system32\Drivers\SCDEmu.sys [116320 2015-02-18] (Power Software Ltd) S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [35288 2014-12-25] (The OpenVPN Project) R2 WiseFS; C:\Windows\WiseFs32.sys [10792 2015-03-15] (WiseCleaner.com) [File not signed] R1 ZAM; C:\Windows\System32\drivers\zam32.sys [91392 2015-04-18] (Zemana Ltd.) S2 SPDRIVER_1.39.0.1599; \??\C:\Program Files\ShopperPro\JSDriver\1.39.0.1599\jsdrv.sys [X] S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X] S3 tsusbhub; system32\drivers\tsusbhub.sys [X] S3 VGPU; System32\drivers\rdvgkmd.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-07-19 10:15 - 2015-07-19 10:16 - 00066007 _____ C:\Users\User\Desktop\Addition.txt 2015-07-19 10:14 - 2015-07-19 10:17 - 00021049 _____ C:\Users\User\Desktop\FRST.txt 2015-07-19 10:13 - 2015-07-19 10:17 - 00000000 ____D C:\FRST 2015-07-19 10:12 - 2015-07-19 10:12 - 01637888 _____ (Farbar) C:\Users\User\Desktop\FRST.exe 2015-07-17 06:41 - 2015-07-17 06:41 - 00000350 _____ C:\Windows\PFRO.log 2015-07-16 19:48 - 2015-07-18 14:01 - 00000608 _____ C:\Users\User\Desktop\MILENKO REGISTRACIJA.txt 2015-07-16 19:33 - 2015-07-16 19:33 - 00001091 _____ C:\Users\Public\Desktop\OkayFreedom.lnk 2015-07-16 19:13 - 2015-07-16 19:14 - 00000000 ____D C:\Users\User\Desktop\LYONESS 2015-07-16 15:13 - 2015-07-19 09:11 - 00001130 _____ C:\Windows\setupact.log 2015-07-16 15:13 - 2015-07-16 15:13 - 00000000 _____ C:\Windows\setuperr.log 2015-07-16 13:34 - 2015-07-19 00:30 - 00025016 _____ C:\Windows\Partizan.log 2015-07-15 13:19 - 2015-07-15 13:23 - 00000000 ____D C:\Users\User\Desktop\Theta book 2015-07-07 08:32 - 2015-07-19 09:32 - 00005498 _____ C:\Windows\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-6.job 2015-07-07 08:32 - 2015-07-19 09:11 - 00005162 _____ C:\Windows\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-7.job 2015-07-07 08:32 - 2015-07-08 07:30 - 00000000 ____D C:\Program Files\b5232a51-8cec-4ae6-bc7f-d07cb79f20d4 2015-07-07 08:31 - 2015-07-19 09:11 - 00005164 _____ C:\Windows\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-11.job 2015-07-07 08:30 - 2015-07-19 09:30 - 00002092 _____ C:\Windows\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10_user.job 2015-07-07 08:30 - 2015-07-19 09:11 - 00004138 _____ C:\Windows\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-3.job 2015-07-07 08:30 - 2015-07-08 07:30 - 00000000 ____D C:\Program Files\CinemaP-1.9cV07.07 2015-07-07 08:30 - 2015-07-07 08:30 - 00000000 ____D C:\Users\User\AppData\Local\globalUpdate 2015-07-07 08:30 - 2015-07-07 08:30 - 00000000 ____D C:\Program Files\globalUpdate 2015-07-05 18:39 - 2015-07-05 18:49 - 00000000 ____D C:\Users\User\Desktop\Slike old 2015-07-05 14:40 - 2015-07-05 14:40 - 00001279 _____ C:\Users\User\Desktop\Aoao Watermark.lnk 2015-07-05 14:39 - 2015-07-05 14:39 - 00000000 ____D C:\Users\User\Desktop\AoaoWatermarkForPhoto87-2mk4na 2015-07-02 09:07 - 2015-07-02 09:07 - 00000000 ____D C:\Users\User\AppData\Local\GWX 2015-07-02 08:59 - 2015-07-02 08:59 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2015-07-02 08:54 - 2015-07-02 08:54 - 01250816 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2015-07-02 08:54 - 2015-07-02 08:54 - 00909312 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 19607040 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 12829696 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 04305920 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 03989440 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe 2015-07-02 08:53 - 2015-07-02 08:53 - 03934144 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2015-07-02 08:53 - 2015-07-02 08:53 - 02278912 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-07-02 08:53 - 2015-07-02 08:53 - 01950720 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 01309696 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 01307648 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00901120 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00853504 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-07-02 08:53 - 2015-07-02 08:53 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2015-07-02 08:53 - 2015-07-02 08:53 - 00664064 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00641536 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00621568 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00571392 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00551424 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe 2015-07-02 08:53 - 2015-07-02 08:53 - 00342728 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00333824 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2015-07-02 08:53 - 2015-07-02 08:53 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00137664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2015-07-02 08:53 - 2015-07-02 08:53 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-07-02 08:53 - 2015-07-02 08:53 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2015-07-02 08:53 - 2015-07-02 08:53 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe 2015-07-02 08:53 - 2015-07-02 08:53 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2015-07-02 08:53 - 2015-07-02 08:53 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2015-07-02 08:53 - 2015-07-02 08:53 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2015-07-02 08:53 - 2015-07-02 08:53 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe 2015-07-02 08:53 - 2015-07-02 08:53 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe 2015-07-02 08:53 - 2015-07-02 08:53 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2015-07-02 08:53 - 2015-07-02 08:53 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe 2015-07-02 08:53 - 2015-07-02 08:53 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2015-07-02 08:53 - 2015-07-02 08:53 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2015-07-02 08:53 - 2015-05-23 05:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-07-02 08:53 - 2015-05-23 05:14 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-07-02 08:52 - 2015-07-02 08:52 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2015-07-02 08:52 - 2015-07-02 08:52 - 11411456 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2015-07-02 08:52 - 2015-07-02 08:52 - 02384384 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-07-02 08:52 - 2015-07-02 08:52 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2015-07-02 08:52 - 2015-07-02 08:52 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\services.exe 2015-07-02 08:52 - 2015-07-02 08:52 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll 2015-07-02 08:52 - 2015-07-02 08:52 - 00054656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys 2015-07-02 08:52 - 2015-07-02 08:52 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll 2015-07-02 08:52 - 2015-07-02 08:52 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll 2015-07-02 08:52 - 2015-07-02 08:52 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx 2015-07-02 08:52 - 2015-07-02 08:52 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2015-07-02 08:48 - 2015-07-02 08:48 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2015-07-02 08:48 - 2015-07-02 08:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2015-07-02 08:47 - 2015-07-02 08:47 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll 2015-07-01 10:21 - 2015-07-01 10:21 - 00000927 _____ C:\Users\User\Desktop\A4DeskPro.lnk 2015-07-01 10:21 - 2015-07-01 10:21 - 00000000 ____D C:\Users\User\AppData\Roaming\A4DeskPro 2015-07-01 10:21 - 2015-07-01 10:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\A4DeskPro 2015-07-01 10:21 - 2015-07-01 10:21 - 00000000 ____D C:\Program Files\A4DeskPro 2015-07-01 10:19 - 2015-07-01 10:19 - 00000000 ____D C:\Users\User\Desktop\A4DeskProWebsiteBuilder710-g5fd3a0 2015-06-24 16:28 - 2015-06-24 17:46 - 00000000 ____D C:\Users\User\Desktop\Trebnik 2015-06-24 11:39 - 2015-06-24 11:39 - 00010675 _____ C:\Users\User\Desktop\Несачуван документ 1.odt 2015-06-21 15:45 - 2015-06-21 15:45 - 00233007 _____ C:\Users\User\Desktop\Screenshot_2015-06-21-15-41-18.jpeg ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-07-19 09:50 - 2015-06-02 18:48 - 00000000 ____D C:\Users\User\AppData\Local\CrashDumps 2015-07-19 09:42 - 2014-11-16 17:33 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-07-19 09:41 - 2014-11-03 14:12 - 00000886 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-07-19 09:39 - 2015-03-20 10:13 - 00001332 _____ C:\Windows\Tasks\BITDQ.job 2015-07-19 09:39 - 2015-03-20 10:12 - 00001332 _____ C:\Windows\Tasks\QGKCZ.job 2015-07-19 09:31 - 2009-07-14 06:34 - 00020480 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-07-19 09:31 - 2009-07-14 06:34 - 00020480 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-07-19 09:30 - 2015-03-20 10:45 - 00000004 _____ C:\Windows\system32\029B560A371F4E00AB32838EBC01B9E7 2015-07-19 09:17 - 2015-03-20 10:17 - 00001330 _____ C:\Windows\Tasks\GNOK.job 2015-07-19 09:16 - 2015-03-20 10:16 - 00001682 _____ C:\Windows\Tasks\BYAIAMUF.job 2015-07-19 09:16 - 2014-11-03 09:51 - 00785484 _____ C:\Windows\system32\PerfStringBackup.INI 2015-07-19 09:12 - 2015-01-09 11:14 - 00000000 ____D C:\Users\User\AppData\Roaming\Wise Care 365 2015-07-19 09:11 - 2015-02-06 15:24 - 00000882 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d04210424ba645.job 2015-07-19 09:11 - 2015-01-22 20:08 - 00000000 ____D C:\ProgramData\MCShield 2015-07-19 09:11 - 2015-01-03 14:12 - 00000260 _____ C:\Windows\system32\PARTIZAN.TXT 2015-07-19 09:11 - 2014-11-03 14:12 - 00000882 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-07-19 09:11 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-07-19 00:30 - 2015-01-09 12:30 - 01913257 _____ C:\Windows\WindowsUpdate.log 2015-07-18 17:35 - 2014-11-07 10:47 - 00000000 ____D C:\Users\User\AppData\Roaming\ProcessLasso 2015-07-18 17:35 - 2014-11-07 10:47 - 00000000 ____D C:\Program Files\Process Lasso 2015-07-18 13:51 - 2014-11-04 10:02 - 00000000 ____D C:\Users\User\AppData\Roaming\Skype 2015-07-18 11:35 - 2014-11-07 11:26 - 00000000 ____D C:\Program Files\Hard Disk Sentinel 2015-07-18 09:11 - 2015-05-14 13:20 - 00000000 ____D C:\Users\User\Desktop\Slike 2015-07-18 08:37 - 2014-12-24 11:33 - 00000000 ____D C:\Users\User\AppData\Roaming\Steganos VPN 2015-07-17 14:22 - 2014-11-07 11:40 - 00000000 ____D C:\Users\User\AppData\Roaming\Mozilla 2015-07-16 20:33 - 2015-05-03 10:25 - 00002872 _____ C:\Windows\system32\HideMyIpSRVOff.ini 2015-07-16 19:33 - 2015-03-20 10:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OkayFreedom 2015-07-16 19:33 - 2014-12-24 11:33 - 00000000 ____D C:\Program Files\OkayFreedom 2015-07-16 19:33 - 2014-12-24 11:33 - 00000000 ____D C:\Program Files\Common Files\Steganos 2015-07-16 19:31 - 2014-12-24 11:34 - 00000000 ____D C:\Users\User\AppData\Roaming\Steganos Updates 2015-07-15 18:42 - 2015-04-15 11:42 - 19198128 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe 2015-07-15 18:42 - 2014-11-05 11:58 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2015-07-15 18:42 - 2014-11-05 11:58 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2015-07-15 10:27 - 2014-11-03 15:35 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2015-07-14 20:26 - 2015-02-10 19:02 - 00000000 ____D C:\Program Files\Opera 2015-07-08 17:23 - 2015-05-12 15:06 - 00001982 _____ C:\Users\User\Desktop\MO Pro 2013 key i Oglas.txt 2015-07-08 09:25 - 2014-11-03 15:31 - 00000000 ____D C:\Users\User\AppData\Local\Adobe 2015-07-08 07:30 - 2015-03-28 11:48 - 00000000 ____D C:\Program Files\1stFlip FlipBook Creator 2015-07-05 14:40 - 2015-03-01 11:51 - 00000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AoaoPhoto Digital Studio 2015-07-05 14:40 - 2014-11-28 11:12 - 00000000 ____D C:\Users\User\Documents\AoaoPhoto Digital Studio 2015-07-05 14:40 - 2014-11-28 11:12 - 00000000 ____D C:\Program Files\AoaoPhoto Digital Studio 2015-07-04 09:20 - 2009-07-14 06:53 - 00032642 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2015-07-03 12:55 - 2015-02-25 12:33 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service 2015-07-03 09:37 - 2015-02-25 12:33 - 00000000 ____D C:\Program Files\Mozilla Firefox 2015-07-03 08:48 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache 2015-07-02 13:29 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\Microsoft.NET 2015-07-02 09:03 - 2015-01-09 12:27 - 00514480 _____ C:\Windows\system32\FNTCACHE.DAT 2015-07-02 09:00 - 2015-05-11 13:58 - 00000000 ___SD C:\Windows\system32\GWX 2015-07-02 09:00 - 2015-05-11 13:58 - 00000000 ___SD C:\Windows\system32\CompatTel 2015-07-02 09:00 - 2015-05-11 13:58 - 00000000 ____D C:\Windows\system32\appraiser 2015-07-02 09:00 - 2009-07-14 09:50 - 00000000 ____D C:\Program Files\Windows Journal 2015-07-01 13:20 - 2014-12-06 19:22 - 00098520 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-07-01 13:15 - 2014-12-06 19:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2015-07-01 13:15 - 2014-12-06 19:22 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware 2015-07-01 13:14 - 2014-12-06 19:22 - 00094936 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2015-07-01 13:14 - 2014-12-06 19:22 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2015-07-01 13:14 - 2014-12-06 19:22 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2015-06-27 18:29 - 2014-11-03 17:07 - 00000000 ____D C:\Program Files\CCleaner 2015-06-26 16:58 - 2014-11-04 10:01 - 00000000 ____D C:\ProgramData\Skype 2015-06-23 18:48 - 2014-11-07 14:22 - 00000000 ____D C:\Program Files\Comodo ==================== Files in the root of some directories ======= 2015-01-16 10:54 - 2008-07-07 14:22 - 0000014 _____ () C:\Users\User\AppData\Roaming\options.ini 2015-01-16 10:54 - 2012-07-07 14:04 - 0000003 _____ () C:\Users\User\AppData\Roaming\options_pdfcombine.ini 2015-01-16 10:54 - 2013-02-23 13:15 - 0000003 _____ () C:\Users\User\AppData\Roaming\options_pdfrotator.ini 2014-11-04 08:13 - 2014-11-04 08:14 - 0000053 _____ () C:\Users\User\AppData\Roaming\pdfcompressor.ini 2015-01-16 10:54 - 2013-06-09 10:38 - 0000053 _____ () C:\Users\User\AppData\Roaming\setting.ini 2015-01-16 10:54 - 2013-06-08 14:43 - 0000030 _____ () C:\Users\User\AppData\Roaming\setup.ini 2015-01-16 10:54 - 2013-06-09 10:30 - 0000043 _____ () C:\Users\User\AppData\Roaming\setup_pdfcombine.ini 2015-01-16 10:54 - 2013-06-09 11:34 - 0000043 _____ () C:\Users\User\AppData\Roaming\setup_pdfrotator.ini 2015-02-02 10:04 - 2015-02-02 10:04 - 0001534 _____ () C:\ProgramData\ss.ini Some files in TEMP: ==================== C:\Users\User\AppData\Local\Temp\1693.exe C:\Users\User\AppData\Local\Temp\243.exe C:\Users\User\AppData\Local\Temp\2439.exe C:\Users\User\AppData\Local\Temp\429.exe C:\Users\User\AppData\Local\Temp\SkypeSetup.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-07-13 08:04 ==================== End of log ============================ U prilozima su prikačen Addition.txt izveštaj i slika na kojoj se nalazi CinemaP koji ne mogu deinstalirati. Hvala i veliki pozdrav! https://www.mycity.rs/must-login.png

Profil

Sass Drake Poslao: 19 Jul 2015 12:11 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Imaš prljavi adware na sistemu. Sada ćemo to počistiti. Korak 1 Deinstaliraj Driver Booster 2 i Driver Magician 4.5. Od programa ove vrste nemaš koristi, a isti mogu da izazovu štetu instalacijom pogrešnih drajvera. Korak 2 Otvori Notepad i iskopiraj sljedeći tekst koji se nalazi unutar Kod polja. OPR Extension: (CinemaP-1.9cV16.03) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\acklnhgjphbhhomkneonohbjnbmkclfb [2015-03-20] OPR Extension: (Ge-Force) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\jhongheibdpfhdpfccheljfcabgliidh [2015-03-20] OPR Extension: (Sense) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\knlpigpfaognbholppaembpfphilacie [2015-03-20] OPR Extension: (CinemaP-1.9cV07.07) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi [2015-07-07] S2 SPDRIVER_1.39.0.1599; \??\C:\Program Files\ShopperPro\JSDriver\1.39.0.1599\jsdrv.sys [X] Task: {177C942F-1300-4BEA-9F32-D74C3F8024E4} - System32\Tasks\BYAIAMUF => C:\Users\User\AppData\Roaming\BYAIAMUF.exe <==== ATTENTION Task: {29DC8FC1-B65E-46B1-A5A1-22D5EC2650AB} - System32\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-7 => C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-7.exe <==== ATTENTION Task: {3CF149F2-2BF1-418F-89F3-4A4C5C033012} - System32\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-11 => C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-11.exe [2015-07-07] (Cinema PlusV07.07) <==== ATTENTION Task: {664C3FE3-059F-4A4E-8A48-A22904793F94} - System32\Tasks\BITDQ => C:\Users\User\AppData\Roaming\BITDQ.exe <==== ATTENTION Task: {6B21DDAD-C48B-44CD-9D12-C53BC1971CA6} - System32\Tasks\QGKCZ => C:\Users\User\AppData\Roaming\QGKCZ.exe <==== ATTENTION Task: {A333FFCC-B992-40A5-B92D-DDB6145503A6} - System32\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10_user => C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe [2015-07-07] (Cinema PlusV07.07) <==== ATTENTION Task: {A67AADFA-7682-48B4-911F-9D90B8F4CE57} - System32\Tasks\Driver Booster Update => C:\Program Files\IObit\Driver Booster\AutoUpdate.exe [2014-10-13] (IObit) Task: {B496B7C2-92A0-4C03-9A7A-7E0E7CFF1851} - System32\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-6 => C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-6.exe [2015-07-07] (Cinema PlusV07.07) <==== ATTENTION Task: {CBDE5D13-BF94-4CF5-804F-5CF889BE34EC} - System32\Tasks\{7B3C12F7-E8D2-45A8-B3C8-EA7431003203} => pcalua.exe -a "C:\Program Files\CinemaP-1.9cV07.07\UninstallBrw.exe" -d "C:\Program Files\CinemaP-1.9cV07.07" Task: {CCBBC162-A5C2-4A70-B654-BEC2A4D87B24} - System32\Tasks\GNOK => C:\Users\User\AppData\Roaming\GNOK.exe <==== ATTENTION Task: {D2D6FDDE-A254-4D67-A503-D9CDE2CF169C} - System32\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-3 => C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-3.exe [2015-07-07] (Cinema PlusV07.07) <==== ATTENTION Task: {FF20FE52-400F-4D6C-98F7-0F29B1CB8D25} - System32\Tasks\Driver Booster SkipUAC (User) => C:\Program Files\IObit\Driver Booster\DriverBooster.exe [2014-10-22] (IObit) Task: C:\Windows\Tasks\BITDQ.job => C:\Users\User\AppData\Roaming\BITDQ.exe <==== ATTENTION Task: C:\Windows\Tasks\BYAIAMUF.job => C:\Users\User\AppData\Roaming\BYAIAMUF.exe <==== ATTENTION Task: C:\Windows\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10_user.job => C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe <==== ATTENTION Task: C:\Windows\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-11.job => C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-11.exe <==== ATTENTION Task: C:\Windows\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-3.job => C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-3.exe <==== ATTENTION Task: C:\Windows\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-6.job => C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-6.exe <==== ATTENTION Task: C:\Windows\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-7.job => C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-7.exe <==== ATTENTION Task: C:\Windows\Tasks\GNOK.job => C:\Users\User\AppData\Roaming\GNOK.exe <==== ATTENTION Task: C:\Windows\Tasks\QGKCZ.job => C:\Users\User\AppData\Roaming\QGKCZ.exe <==== ATTENTION AlternateDataStreams: C:\ProgramData\Temp:85551434 cmd: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SPDriver" /f C:\Program Files\ShopperPro C:\Program Files\b5232a51-8cec-4ae6-bc7f-d07cb79f20d4 C:\Program Files\CinemaP-1.9cV07.07 C:\Users\User\AppData\Local\globalUpdate C:\Program Files\globalUpdate C:\Users\User\AppData\Local\Temp\1693.exe C:\Users\User\AppData\Local\Temp\243.exe C:\Users\User\AppData\Local\Temp\2439.exe C:\Users\User\AppData\Local\Temp\429.exe C:\Users\User\AppData\Roaming\BYAIAMUF.exe C:\Users\User\AppData\Roaming\BITDQ.exe C:\Users\User\AppData\Roaming\QGKCZ.exe C:\Users\User\AppData\Roaming\GNOK.exe EmptyTemp: U okviru Notepad-a klikni na File --> Save As Fajl nazovi Fixlist i sačuvaj na Desktop Dvoklikom ponovo pokreni FRST.exe Klikni na Fix i sačekaj dok program ne završi. Ukoliko program zatraži restart računara, omogući mu da to nesmetano obavi. Nakon završetka rada, otvoriće se fixlog.txt, sa sadržajem koji treba da kopiraš u temu. Takođe, na Desktop-u će se nalaziti (fixlog.txt). Korak 3 Preuzmi "Xplode"-ov AdwCleaner i sačuvaj ga na Desktop Dvoklikom pokreni program. u EULA prozoru klikni na I agree. Klikni na dugme Scan i sačekaj da se završi skeniranje. Klikni na dugme Cleaning i pričekaj da program završi. Program će zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni OK kao potvrdu. Na sljedeća dva prozora koja se otvore (Informations i Restart required ) klikni OK Računar će se restartovati, a potom otvoriti Notepad (C:\AdwCleaner[S0].txt) sa izvještajem. Sačuvaj taj izvještaj na Desktop i okači ga uz poruku koristeći opciju "Prikači fajl" Napomena: Izvještaj ce takođe biti sačuvan na C:\Adwcleaner\AdwCleaner[S0].txt

Profil

rintintin Poslao: 19 Jul 2015 12:42 Idi na vrh
offline rintintin Zaslužni građanin Pridružio: 25 Okt 2010 Poruke: 595 Gde živiš: Pomoravlje	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 19 Jul 2015 12:40 https://www.mycity.rs/must-login.png https://www.mycity.rs/must-login.png Dopuna: 19 Jul 2015 12:42 Fix result of Farbar Recovery Scan Tool (x86) Version: 18-07-2015 01 Ran by User at 2015-07-19 12:21:27 Run:1 Running from C:\Users\User\Desktop Loaded Profiles: User (Available Profiles: User) Boot Mode: Normal ============================================== fixlist content: *************** OPR Extension: (CinemaP-1.9cV16.03) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\acklnhgjphbhhomkneonohbjnbmkclfb [2015-03-20] OPR Extension: (Ge-Force) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\jhongheibdpfhdpfccheljfcabgliidh [2015-03-20] OPR Extension: (Sense) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\knlpigpfaognbholppaembpfphilacie [2015-03-20] OPR Extension: (CinemaP-1.9cV07.07) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi [2015-07-07] S2 SPDRIVER_1.39.0.1599; \??\C:\Program Files\ShopperPro\JSDriver\1.39.0.1599\jsdrv.sys [X] Task: {177C942F-1300-4BEA-9F32-D74C3F8024E4} - System32\Tasks\BYAIAMUF => C:\Users\User\AppData\Roaming\BYAIAMUF.exe <==== ATTENTION Task: {29DC8FC1-B65E-46B1-A5A1-22D5EC2650AB} - System32\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-7 => C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-7.exe <==== ATTENTION Task: {3CF149F2-2BF1-418F-89F3-4A4C5C033012} - System32\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-11 => C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-11.exe [2015-07-07] (Cinema PlusV07.07) <==== ATTENTION Task: {664C3FE3-059F-4A4E-8A48-A22904793F94} - System32\Tasks\BITDQ => C:\Users\User\AppData\Roaming\BITDQ.exe <==== ATTENTION Task: {6B21DDAD-C48B-44CD-9D12-C53BC1971CA6} - System32\Tasks\QGKCZ => C:\Users\User\AppData\Roaming\QGKCZ.exe <==== ATTENTION Task: {A333FFCC-B992-40A5-B92D-DDB6145503A6} - System32\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10_user => C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe [2015-07-07] (Cinema PlusV07.07) <==== ATTENTION Task: {A67AADFA-7682-48B4-911F-9D90B8F4CE57} - System32\Tasks\Driver Booster Update => C:\Program Files\IObit\Driver Booster\AutoUpdate.exe [2014-10-13] (IObit) Task: {B496B7C2-92A0-4C03-9A7A-7E0E7CFF1851} - System32\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-6 => C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-6.exe [2015-07-07] (Cinema PlusV07.07) <==== ATTENTION Task: {CBDE5D13-BF94-4CF5-804F-5CF889BE34EC} - System32\Tasks\{7B3C12F7-E8D2-45A8-B3C8-EA7431003203} => pcalua.exe -a "C:\Program Files\CinemaP-1.9cV07.07\UninstallBrw.exe" -d "C:\Program Files\CinemaP-1.9cV07.07" Task: {CCBBC162-A5C2-4A70-B654-BEC2A4D87B24} - System32\Tasks\GNOK => C:\Users\User\AppData\Roaming\GNOK.exe <==== ATTENTION Task: {D2D6FDDE-A254-4D67-A503-D9CDE2CF169C} - System32\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-3 => C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-3.exe [2015-07-07] (Cinema PlusV07.07) <==== ATTENTION Task: {FF20FE52-400F-4D6C-98F7-0F29B1CB8D25} - System32\Tasks\Driver Booster SkipUAC (User) => C:\Program Files\IObit\Driver Booster\DriverBooster.exe [2014-10-22] (IObit) Task: C:\Windows\Tasks\BITDQ.job => C:\Users\User\AppData\Roaming\BITDQ.exe <==== ATTENTION Task: C:\Windows\Tasks\BYAIAMUF.job => C:\Users\User\AppData\Roaming\BYAIAMUF.exe <==== ATTENTION Task: C:\Windows\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10_user.job => C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10.exe <==== ATTENTION Task: C:\Windows\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-11.job => C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-11.exe <==== ATTENTION Task: C:\Windows\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-3.job => C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-3.exe <==== ATTENTION Task: C:\Windows\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-6.job => C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-6.exe <==== ATTENTION Task: C:\Windows\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-7.job => C:\Program Files\CinemaP-1.9cV07.07\ccf00e2b-042d-45a8-9173-63dfa4076cbe-7.exe <==== ATTENTION Task: C:\Windows\Tasks\GNOK.job => C:\Users\User\AppData\Roaming\GNOK.exe <==== ATTENTION Task: C:\Windows\Tasks\QGKCZ.job => C:\Users\User\AppData\Roaming\QGKCZ.exe <==== ATTENTION AlternateDataStreams: C:\ProgramData\Temp:85551434 cmd: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SPDriver" /f C:\Program Files\ShopperPro C:\Program Files\b5232a51-8cec-4ae6-bc7f-d07cb79f20d4 C:\Program Files\CinemaP-1.9cV07.07 C:\Users\User\AppData\Local\globalUpdate C:\Program Files\globalUpdate C:\Users\User\AppData\Local\Temp\1693.exe C:\Users\User\AppData\Local\Temp\243.exe C:\Users\User\AppData\Local\Temp\2439.exe C:\Users\User\AppData\Local\Temp\429.exe C:\Users\User\AppData\Roaming\BYAIAMUF.exe C:\Users\User\AppData\Roaming\BITDQ.exe C:\Users\User\AppData\Roaming\QGKCZ.exe C:\Users\User\AppData\Roaming\GNOK.exe EmptyTemp: *************** C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\acklnhgjphbhhomkneonohbjnbmkclfb => moved successfully. C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\jhongheibdpfhdpfccheljfcabgliidh => moved successfully. C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\knlpigpfaognbholppaembpfphilacie => moved successfully. C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi => moved successfully. SPDRIVER_1.39.0.1599 => Service removed successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{177C942F-1300-4BEA-9F32-D74C3F8024E4}" => key removed successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{177C942F-1300-4BEA-9F32-D74C3F8024E4}" => key removed successfully. C:\Windows\System32\Tasks\BYAIAMUF => moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BYAIAMUF" => key removed successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{29DC8FC1-B65E-46B1-A5A1-22D5EC2650AB}" => key removed successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{29DC8FC1-B65E-46B1-A5A1-22D5EC2650AB}" => key removed successfully. C:\Windows\System32\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-7 => moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ccf00e2b-042d-45a8-9173-63dfa4076cbe-7" => key removed successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3CF149F2-2BF1-418F-89F3-4A4C5C033012}" => key removed successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3CF149F2-2BF1-418F-89F3-4A4C5C033012}" => key removed successfully. C:\Windows\System32\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-11 => moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ccf00e2b-042d-45a8-9173-63dfa4076cbe-11" => key removed successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{664C3FE3-059F-4A4E-8A48-A22904793F94}" => key removed successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{664C3FE3-059F-4A4E-8A48-A22904793F94}" => key removed successfully. C:\Windows\System32\Tasks\BITDQ => moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BITDQ" => key removed successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{6B21DDAD-C48B-44CD-9D12-C53BC1971CA6}" => key removed successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6B21DDAD-C48B-44CD-9D12-C53BC1971CA6}" => key removed successfully. C:\Windows\System32\Tasks\QGKCZ => moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\QGKCZ" => key removed successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A333FFCC-B992-40A5-B92D-DDB6145503A6}" => key removed successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A333FFCC-B992-40A5-B92D-DDB6145503A6}" => key removed successfully. C:\Windows\System32\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10_user => moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10_user" => key removed successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A67AADFA-7682-48B4-911F-9D90B8F4CE57} => key not found. C:\Windows\System32\Tasks\Driver Booster Update not found. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Update => key not found. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B496B7C2-92A0-4C03-9A7A-7E0E7CFF1851}" => key removed successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B496B7C2-92A0-4C03-9A7A-7E0E7CFF1851}" => key removed successfully. C:\Windows\System32\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-6 => moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ccf00e2b-042d-45a8-9173-63dfa4076cbe-6" => key removed successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CBDE5D13-BF94-4CF5-804F-5CF889BE34EC}" => key removed successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CBDE5D13-BF94-4CF5-804F-5CF889BE34EC}" => key removed successfully. C:\Windows\System32\Tasks\{7B3C12F7-E8D2-45A8-B3C8-EA7431003203} => moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7B3C12F7-E8D2-45A8-B3C8-EA7431003203}" => key removed successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CCBBC162-A5C2-4A70-B654-BEC2A4D87B24}" => key removed successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CCBBC162-A5C2-4A70-B654-BEC2A4D87B24}" => key removed successfully. C:\Windows\System32\Tasks\GNOK => moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GNOK" => key removed successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D2D6FDDE-A254-4D67-A503-D9CDE2CF169C}" => key removed successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D2D6FDDE-A254-4D67-A503-D9CDE2CF169C}" => key removed successfully. C:\Windows\System32\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-3 => moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ccf00e2b-042d-45a8-9173-63dfa4076cbe-3" => key removed successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FF20FE52-400F-4D6C-98F7-0F29B1CB8D25}" => key removed successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FF20FE52-400F-4D6C-98F7-0F29B1CB8D25}" => key removed successfully. C:\Windows\System32\Tasks\Driver Booster SkipUAC (User) => moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster SkipUAC (User)" => key removed successfully. C:\Windows\Tasks\BITDQ.job => moved successfully. C:\Windows\Tasks\BYAIAMUF.job => moved successfully. C:\Windows\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-10_user.job => moved successfully. C:\Windows\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-11.job => moved successfully. C:\Windows\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-3.job => moved successfully. C:\Windows\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-6.job => moved successfully. C:\Windows\Tasks\ccf00e2b-042d-45a8-9173-63dfa4076cbe-7.job => moved successfully. C:\Windows\Tasks\GNOK.job => moved successfully. C:\Windows\Tasks\QGKCZ.job => moved successfully. C:\ProgramData\Temp => ":85551434" ADS removed successfully.. ========= reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SPDriver" /f ========= The operation completed successfully. ========= End of CMD: ========= "C:\Program Files\ShopperPro" => File/Folder not found. C:\Program Files\b5232a51-8cec-4ae6-bc7f-d07cb79f20d4 => moved successfully. C:\Program Files\CinemaP-1.9cV07.07 => moved successfully. C:\Users\User\AppData\Local\globalUpdate => moved successfully. C:\Program Files\globalUpdate => moved successfully. C:\Users\User\AppData\Local\Temp\1693.exe => moved successfully. C:\Users\User\AppData\Local\Temp\243.exe => moved successfully. C:\Users\User\AppData\Local\Temp\2439.exe => moved successfully. C:\Users\User\AppData\Local\Temp\429.exe => moved successfully. "C:\Users\User\AppData\Roaming\BYAIAMUF.exe" => File/Folder not found. "C:\Users\User\AppData\Roaming\BITDQ.exe" => File/Folder not found. "C:\Users\User\AppData\Roaming\QGKCZ.exe" => File/Folder not found. "C:\Users\User\AppData\Roaming\GNOK.exe" => File/Folder not found. EmptyTemp: => 422.2 MB temporary data Removed. The system needed a reboot. ==== End of Fixlog 12:22:46 ====

Profil

Sass Drake Poslao: 19 Jul 2015 13:12 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Odlično. Kakvo je sada stanje?

Profil

rintintin Poslao: 19 Jul 2015 13:14 Idi na vrh
offline rintintin Zaslužni građanin Pridružio: 25 Okt 2010 Poruke: 595 Gde živiš: Pomoravlje	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Za sada ništa ne primećujem,internet lepo radi,hvala najlepše.

Profil

Sass Drake Poslao: 19 Jul 2015 13:17 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Korak 1 Ako je moguće, spakuj u ZIP, RAR ili 7Z arhive sljedeće foldere: C:\FRST\Quarantine i C:\AdwCleaner i pošalji ih preko sljedećeg linka: http://www.mycity.rs/ambulanta-upload.php Korak 2 Preuzmi Malwarebytes Anti-Rootkit (MBAR) sa sledeceg linka i sacuvaj ga na Desktop. Dvoklikom pokreni MBAR () na ikonicu programa: - Klikni OK na sledecem prozoru da bi dozvolio raspakivanje u zaseban mbar folder na desktop-u; - mbar.exe ce biti startovan. Na nekim sistemima to moze da potraje nekoliko dodatnih sekundi, te pricekati pokretanje.; - U uvodnom prozoru klikni dugme Next ukoliko si saglasan; • Na 'Update Database' prozoru klik na dugme Update da bi preuzeo sveze definicije. Kada se ispise poruka 'Success: Database was successfully updated' klik na dugme Next; • Pod sekcijom 'Scan Targets' proveri da su sve opcije stiklirane, te klikni na dugme Scan; Obavestenje: sa nekim infekcijama moze se desiti da se prikaze neka od sledecih poruka: - 'Could not load protection driver' => u tom slucaju klikni OK. - 'Could not load DDA driver' => klikni Yes na to obavestenje da bi dozvolio ucitavanje nakon restarta. Dozvoli restart i nastavi sa ostatkom instrukcija posle restarta. >> Ukoliko malware nije detektovan, klik na Exit dugme da zatvoris program. U sledecu poruku postavi mbar-log-year-month-day (sat-minuti-sekundi).txt i system-log.txt izveštaje. >> Ukoliko su infekcija/e pronadjene, proveriti da li je obelezena opcija 'Create Restore Point' i klikni na dugme Cleanup! da bi uklonili pretnje. - Procedura uklanjanje malware-a (scheduled) ce biti zakazana po restartu, bice prikazano obavestenje u pop-up prozoru. Klikni dugme Yes i sistem bi trebao da se restartuje i da zavrsi proceduru ciscenja. Obavestenje! samo ukoliko je RootKit detektovan: - postaraj se da pokrenes fixdamage.exe alat koji se nalazi u mbar folderu, \Plugins\fixdamage.exe: - Dvoklikom pokreni fixdamage, u crnom prozoru koji se otvori (command prompt) ukucaj Y (Y stoji za Yes) da bi nastavio izvrsenje, pricekati da alat odradi sve popravke ... - Kada vidis poruku 'press any key to exit' popravka je kompletirana. Pritisnuti bilo koju tipku na tastaturi da bi se prozor zatvorio. Restartovati sistem. Sledeci izvestaji ce biti formirani u mbar folderu. 1. mbar-log-year-month-day (hour-minute-second).txt 2. system-log.txt Iskopiraj sadrzaj mbar log-a u poruku a system log okaci uz poruku koristeci opciju Prikači fajl.

Profil

rintintin Poslao: 19 Jul 2015 13:58 Idi na vrh
offline rintintin Zaslužni građanin Pridružio: 25 Okt 2010 Poruke: 595 Gde živiš: Pomoravlje	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Neće da se spakuju ni u RAR ni u ZIP, a malware nije detektovan, kačim fajlove. Malwarebytes Anti-Rootkit BETA 1.09.1.1004 www.malwarebytes.org Database version: main: v2015.07.19.01 rootkit: v2015.07.17.01 Windows 7 Service Pack 1 x86 NTFS Internet Explorer 11.0.9600.17843 User :: USER-PC [administrator] 19.7.2015 13:33:04 mbar-log-2015-07-19 (13-33-04).txt Scan type: Quick scan Scan options enabled: Anti-Rootkit \| Drivers \| MBR \| Physical Sectors \| Memory \| Startup \| Registry \| File System \| Heuristics/Extra \| Heuristics/Shuriken Scan options disabled: Objects scanned: 307757 Time elapsed: 17 minute(s), 5 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) Physical Sectors Detected: 0 (No malicious items detected) (end) https://www.mycity.rs/must-login.png

Profil

Sass Drake Poslao: 19 Jul 2015 17:36 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Stavi da ti kreirana arhiva bude na desktopu, a ne u C: pa oept probaj. Ako ne uspije, nema veze. Ako i kad završiš slanje ostaje ti da odradiš ovo: • Sledeća procedura će implementirati završno čišćenje. Preuzmi "Xplode"-ov DelFix alat i snimi ga na Desktop. Dvoklikom pokreni alat i štikliraj kućice ispred sledećih opcija; Remove disinfection tools Create registry backup Purge System Restore Klikni na dugme Run i pričekaj trenutak dok alat ne završi svoj rad. Od ovog trenutka, svi korišćeni alati u ovoj temi bi trebali biti obrisani. Alat će takođe formirati izveštaj za tebe. (C:\DelFix.txt) Alat će snimiti i zdravo stanje registy-ja i napraviti backup koristeci integrisan program "ERUNT" u %windir%\ERUNT\DelFix Alat briše stare system restore tačke i pravi novu, svežu tačku nakon čišćenja.

Profil

rintintin Poslao: 19 Jul 2015 17:51 Idi na vrh
offline rintintin Zaslužni građanin Pridružio: 25 Okt 2010 Poruke: 595 Gde živiš: Pomoravlje	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Napisano: 19 Jul 2015 17:46 C:\FRST\Quarantine i C:\AdwCleaner spakovan u RAR i poslat preko sljedećeg linka: http://www.mycity.rs/ambulanta-upload.php ...sada radim dalje sa DelFix pa se javljam... Dopuna: 19 Jul 2015 17:51 Gotovo: # DelFix v1.010 - Logfile created 19/07/2015 at 17:48:23 # Updated 26/04/2015 by Xplode # Username : User - USER-PC # Operating System : Windows 7 Ultimate Service Pack 1 (32 bits) ~ Removing disinfection tools ... Deleted : C:\FRST Deleted : C:\AdwCleaner Deleted : C:\Users\User\Desktop\mbar Deleted : C:\Users\User\Desktop\Addition.txt Deleted : C:\Users\User\Desktop\AdwCleaner.exe Deleted : C:\Users\User\Desktop\AdwCleaner.rar Deleted : C:\Users\User\Desktop\AdwCleaner[S2].txt Deleted : C:\Users\User\Desktop\Fixlog.txt Deleted : C:\Users\User\Desktop\FRST.exe Deleted : C:\Users\User\Desktop\FRST.txt Deleted : HKLM\SOFTWARE\AdwCleaner ~ Creating registry backup ... OK ~ Cleaning system restore ... New restore point created ! ########## - EOF - ##########

Profil

rintintin Poslao: 20 Jul 2015 07:48 Idi na vrh
offline rintintin Zaslužni građanin Pridružio: 25 Okt 2010 Poruke: 595 Gde živiš: Pomoravlje	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Sada sve lepo radi. Ako je to sve, HVALA najlepše i svako dobro...!!!

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Antivirus blokira URL adrese i gasi mi se internet

Ko je trenutno na forumu

Ukupno su 846 korisnika na forumu :: 9 registrovanih, 0 sakrivenih i 837 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: Bluper, bojank, goxin, mgolub, milenko crazy north, Ne doznajem se u oružje, Neutral-M, robytz, wizzardone

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by