MyCity » Ambulanta -> Arhiva Ambulante » Problem sa msnom

Problem sa msnom

Napisano na dan: 27.11.2012
2

Problem sa msnom
Pagination Prethodna strana

Idi na vrh

Poslao: 29 Nov 2012 23:35
Idi na vrh
offline
  • Pridružio: 13 Nov 2012
  • Poruke: 18

mycity.rs/must-login.png

OTL logfile created on: 29.11.2012 23:29:17 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Arijana\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 0000141A | Country: Bosnia and Herzegovina | Language: BSB | Date Format: d.M.yyyy

1014,04 Mb Total Physical Memory | 487,28 Mb Available Physical Memory | 48,05% Memory free
2,38 Gb Paging File | 1,59 Gb Available in Paging File | 66,55% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 149,04 Gb Total Space | 117,34 Gb Free Space | 78,73% Space Free | Partition Type: NTFS

Computer Name: CHANGEME1 | User Name: Arijana | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012.11.29 23:26:27 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Arijana\Desktop\OTL (1).exe
PRC - [2012.11.22 10:29:16 | 003,290,304 | ---- | M] (Skype Technologies S.A.) -- C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
PRC - [2012.11.14 03:11:00 | 001,242,728 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Arijana\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
PRC - [2012.05.20 14:23:33 | 000,880,496 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\uTorrent.exe
PRC - [2012.05.04 18:29:46 | 000,161,664 | ---- | M] (Oracle Corporation) -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
PRC - [2012.01.17 10:07:58 | 000,505,736 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jucheck.exe
PRC - [2008.04.14 13:00:00 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.12.20 16:16:24 | 000,037,376 | ---- | M] () -- C:\Program Files\Winamp\winampa.exe


========== Modules (No Company Name) ==========

MOD - [2012.11.15 00:25:52 | 004,537,856 | ---- | M] () -- C:\Documents and Settings\Arijana\Local Settings\Application Data\Google\Chrome\User Data\SwiftShader\1.0.3.0\libGLESv2.dll
MOD - [2012.11.15 00:25:51 | 000,100,864 | ---- | M] () -- C:\Documents and Settings\Arijana\Local Settings\Application Data\Google\Chrome\User Data\SwiftShader\1.0.3.0\libEGL.dll
MOD - [2012.11.14 03:10:59 | 000,460,904 | ---- | M] () -- C:\Documents and Settings\Arijana\Local Settings\Application Data\Google\Chrome\Application\23.0.1271.91\ppgooglenaclpluginchrome.dll
MOD - [2012.11.14 03:10:58 | 012,456,040 | ---- | M] () -- C:\Documents and Settings\Arijana\Local Settings\Application Data\Google\Chrome\Application\23.0.1271.91\PepperFlash\pepflashplayer.dll
MOD - [2012.11.14 03:10:57 | 004,008,040 | ---- | M] () -- C:\Documents and Settings\Arijana\Local Settings\Application Data\Google\Chrome\Application\23.0.1271.91\pdf.dll
MOD - [2012.11.14 03:10:04 | 000,157,304 | ---- | M] () -- C:\Documents and Settings\Arijana\Local Settings\Application Data\Google\Chrome\Application\23.0.1271.91\avutil-51.dll
MOD - [2012.11.14 03:10:03 | 000,275,576 | ---- | M] () -- C:\Documents and Settings\Arijana\Local Settings\Application Data\Google\Chrome\Application\23.0.1271.91\avformat-54.dll
MOD - [2012.11.14 03:10:02 | 002,168,952 | ---- | M] () -- C:\Documents and Settings\Arijana\Local Settings\Application Data\Google\Chrome\Application\23.0.1271.91\avcodec-54.dll
MOD - [2012.11.02 19:59:20 | 002,139,168 | ---- | M] () -- c:\Documents and Settings\All Users\Application Data\PC Performer Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\pcpmngr.dll
MOD - [2012.02.17 19:55:35 | 000,166,912 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2010.03.24 20:17:36 | 008,794,464 | ---- | M] () -- C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
MOD - [2010.01.30 01:41:12 | 004,254,560 | ---- | M] () -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
MOD - [2009.08.12 18:23:58 | 001,291,264 | ---- | M] () -- C:\WINDOWS\system32\quartz.dll
MOD - [2008.04.14 13:00:00 | 000,059,904 | ---- | M] () -- C:\WINDOWS\system32\devenum.dll
MOD - [2008.04.14 13:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2007.12.20 16:16:24 | 000,037,376 | ---- | M] () -- C:\Program Files\Winamp\winampa.exe


========== Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- C:\Program Files\Protector by IB\ExtensionUpdaterService.exe -- (Protector by IB Updater)
SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - [2012.11.22 10:29:16 | 003,290,304 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2012.06.07 18:12:14 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.05.04 18:29:46 | 000,161,664 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2010.03.25 09:25:22 | 030,969,208 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | On_Demand | Unknown] -- C:\DOCUME~1\Arijana\LOCALS~1\Temp\mbr.sys -- (mbr)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\dgderdrv.sys -- (dgderdrv)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - [2009.08.12 18:24:13 | 000,225,856 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2008.04.14 13:00:00 | 000,088,320 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx)
DRV - [2008.04.14 13:00:00 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb)
DRV - [2008.04.14 13:00:00 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx)
DRV - [2007.10.22 09:24:14 | 000,161,792 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k)
DRV - [2007.07.25 02:43:38 | 004,419,584 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
DRV - [2007.06.21 21:58:32 | 000,547,072 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ar5211.sys -- (AR5211)
DRV - [2006.10.24 22:36:48 | 000,042,240 | ---- | M] (ENE Technology Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ESD7SK.sys -- (ESDCR)
DRV - [2006.10.24 22:36:44 | 000,076,928 | ---- | M] (ENE Technology Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ESM7SK.sys -- (ESMCR)
DRV - [2006.10.24 22:36:36 | 000,062,208 | ---- | M] (ENE Technology Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\EMS7SK.sys -- (EMSCR)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = search.live.com/sphome.aspx
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {FE69C007-C452-4d3e-86D2-1730DF8BC871} - SOFTWARE\Classes\CLSID\{FE69C007-C452-4d3e-86D2-1730DF8BC871}\InprocServer32 File not found
IE - HKLM\..\SearchScopes,Backup.Old.DefaultScope =
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{154d339e-ccaa-49a5-9b38-6878ad4220bc}: "URL" = searchamong.com/searchview.php?source=6.....amp;query={searchTerms}&cat=webs&bar=true
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = startsearcher.com/?q={searchTerms}&src=IETB
IE - HKLM\..\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}: "URL" = start.funmoods.com/results.php?f=4&q={searchTerms}&a=nv1&chnl=nv1&cd=2XzuyEtN2Y1L1QzutDtDtC0BtAzztByCtA0BzztB0FtByBtCtN0D0Tzu0CtBtDtBtN1L2XzutBtFtCtFtDtFtAtDtC&cr=652193922

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = search.live.com/sphome.aspx
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = search.live.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = google.com
IE - HKCU\..\URLSearchHook: - No CLSID value found
IE - HKCU\..\URLSearchHook: {FE69C007-C452-4d3e-86D2-1730DF8BC871} - SOFTWARE\Classes\CLSID\{FE69C007-C452-4d3e-86D2-1730DF8BC871}\InprocServer32 File not found
IE - HKCU\..\SearchScopes,Backup.Old.DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b}
IE - HKCU\..\SearchScopes,bProtectorDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{154d339e-ccaa-49a5-9b38-6878ad4220bc}: "URL" = searchamong.com/searchview.php?source=6.....amp;query={searchTerms}&cat=webs&bar=true
IE - HKCU\..\SearchScopes\{73ccfd25-abe2-4bdf-ac5d-28a470a4d234}: "URL" = search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2269050&SSPV=IEAUTOBR
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2269050
IE - HKCU\..\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}: "URL" = start.funmoods.com/results.php?f=4&q={searchTerms}&a=nv1&chnl=nv1&cd=2XzuyEtN2Y1L1QzutDtDtC0BtAzztByCtA0BzztB0FtByBtCtN0D0Tzu0CtBtDtBtN1L2XzutBtFtCtFtDtFtAtDtC&cr=652193922
IE - HKCU\..\SearchScopes\{DCDBBF03-BC10-457D-911F-EFB0321D22BE}: "URL" = ${SRCH_SCP_URL}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Internet Search"
FF - prefs.js..browser.search.order.1: "Internet Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..extensions.enabledItems: 4fa262bfa08bc@4fa262bfa08be.info:1.0
FF - prefs.js..extensions.enabledItems: ffxtlbr@babylon.com:1.5.0
FF - prefs.js..extensions.enabledItems: {872b5b88-9db5-4310-bdd0-ac189557e5f5}:3.15.1.0
FF - prefs.js..extensions.enabledItems: {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.10
FF - prefs.js..extensions.enabledItems: ffxtlbr@funmoods.com:1.5.1
FF - prefs.js..extensions.enabledItems: ffxtlbr@incredibar.com:1.5.0
FF - prefs.js..extensions.enabledItems: plugin@startsearcher.com:1.3
FF - prefs.js..extensions.enabledItems: OneClickDownload@OneClickDownload.com:1.0
FF - prefs.js..extensions.enabledItems: {336D0C35-8A85-403a-B9D2-65C292C39087}:2.0.0.426
FF - prefs.js..extensions.enabledItems: ffxtlbra@softonic.com:1.5.0
FF - prefs.js..extensions.enabledItems: crossriderapp3026@crossrider.com:0.83.33
FF - prefs.js..extensions.enabledItems: {687578b9-7132-4a7a-80e4-30ee31099e03}:3.12.0.8
FF - prefs.js..extensions.enabledItems: plugin@videofiledownload.com:1.5
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.1: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1: C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Arijana\Local Settings\Application Data\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Arijana\Local Settings\Application Data\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\4fa262bfa08bc@4fa262bfa08be.info: C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\4fa262bfa08bc@4fa262bfa08be.info [2012.05.04 16:45:23 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.5.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.05.03 18:47:40 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.5.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.07.12 00:26:26 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{dfefbe51-ca52-484b-adf0-6b158b05262d}: C:\Documents and Settings\All Users\Application Data\PC Performer Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\FirefoxExtension

[2012.05.03 18:47:51 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Arijana\Application Data\Mozilla\Extensions
[2012.11.28 23:42:43 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions
[2012.06.08 17:42:32 | 000,000,000 | ---D | M] ("Free YouTube Download (Free Studio) Menu") -- C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2012.05.04 16:45:23 | 000,000,000 | ---D | M] (ADDICT-THING) -- C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\4fa262bfa08bc@4fa262bfa08be.info
[2012.10.31 22:11:21 | 000,000,000 | ---D | M] (Default Tab) -- C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\addon@defaulttab.com
[2012.10.31 22:11:06 | 000,000,000 | ---D | M] (Microsoft Choice Guard) -- C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\ChoiceGuard@Microsoft
[2012.08.14 13:24:56 | 000,000,000 | ---D | M] ("Software Assist") -- C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\crossriderapp3026@crossrider.com
[2012.07.20 22:56:44 | 000,000,000 | ---D | M] (OneClickDownloader) -- C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\OneClickDownload@OneClickDownload.com
[2012.07.10 22:34:00 | 000,000,000 | ---D | M] (InternetSearch) -- C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\plugin@startsearcher.com
[2012.07.10 22:33:48 | 000,000,000 | ---D | M] (VideoFileDownload - Download YouTube Videos) -- C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\plugin@videofiledownload.com
[2012.06.28 17:39:00 | 000,221,407 | ---- | M] () (No name found) -- C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\gophoto@gophoto.it.xpi
[2012.11.21 10:51:18 | 000,001,827 | ---- | M] () -- C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\searchplugins\bing.xml
[2012.11.21 11:00:59 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012.11.26 19:07:12 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ARIJANA\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\A7DYHSJL.DEFAULT\EXTENSIONS\{687578B9-7132-4A7A-80E4-30EE31099E03}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ARIJANA\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\A7DYHSJL.DEFAULT\EXTENSIONS\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ARIJANA\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\A7DYHSJL.DEFAULT\EXTENSIONS\FFXTLBR@BABYLON.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ARIJANA\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\A7DYHSJL.DEFAULT\EXTENSIONS\FFXTLBR@FUNMOODS.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ARIJANA\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\A7DYHSJL.DEFAULT\EXTENSIONS\FFXTLBR@INCREDIBAR.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ARIJANA\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\A7DYHSJL.DEFAULT\EXTENSIONS\FFXTLBRA@SOFTONIC.COM
File not found (No name found) -- C:\PROGRAM FILES\PROTECTOR BY IB\FIREFOX

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Arijana\Local Settings\Application Data\Google\Chrome\Application\23.0.1271.91\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Arijana\Local Settings\Application Data\Google\Chrome\Application\23.0.1271.91\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Arijana\Local Settings\Application Data\Google\Chrome\Application\23.0.1271.91\pdf.dll
CHR - plugin: Conduit Chrome Plugin (Enabled) = C:\Documents and Settings\Arijana\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\plmlpkfpkijnlijgalnjaacllnjmoamo\10.13.1.89_0\plugins/ConduitChromeApiPlugin.dll
CHR - plugin: Conduit Radio Plugin (Enabled) = C:\Documents and Settings\Arijana\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\plmlpkfpkijnlijgalnjaacllnjmoamo\10.13.1.89_0\plugins/np-cwmp.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Arijana\Local Settings\Application Data\Google\Update\1.3.21.123\npGoogleUpdate3.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL
CHR - plugin: Java(TM) Platform SE 7 U5 (Enabled) = C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll
CHR - plugin: Java Deployment Toolkit 7.0.50.255 (Enabled) = C:\WINDOWS\system32\npDeployJava1.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - Extension: ADDICT-THING = C:\Documents and Settings\Arijana\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\galekkgdiobkegngodjnecldjkcgbema\1.0_0\
CHR - Extension: Similar Sites = C:\Documents and Settings\Arijana\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\hidjnkeodmholilgafgdlgmgggbhnigl\1.6.5_0\
CHR - Extension: Software Assist = C:\Documents and Settings\Arijana\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jenkhamomijcoocoblchfbobohfabaff\1.20.159_0\crossrider
CHR - Extension: Software Assist = C:\Documents and Settings\Arijana\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jenkhamomijcoocoblchfbobohfabaff\1.20.159_0\
CHR - Extension: GoPhoto.it = C:\Documents and Settings\Arijana\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk\1.4_0\
CHR - Extension: DVDVideoSoftTB = C:\Documents and Settings\Arijana\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\plmlpkfpkijnlijgalnjaacllnjmoamo\10.13.1.89_0\

O1 HOSTS File: ([2008.04.14 13:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Software Assist) - {11111111-1111-1111-1111-110011301126} - C:\Program Files\Software Assist\Software Assist.dll (Software Assist)
O2 - BHO: (Protector by IB) - {336D0C35-8A85-403a-B9D2-65C292C39087} - C:\Program Files\Protector by IB\Extension32.dll File not found
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (VideoFileDownload) - {68DD98BF-9DE8-418C-89F0-E37AC61CC2D9} - C:\Program Files\OApps\bho_project.dll File not found
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Funmoods Helper Object) - {75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} - C:\PROGRA~1\Funmoods\1.5.23.22\bh\escort.dll File not found
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (no name) - {9E131A93-EED7-4BEB-B015-A0ADB30B5646} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Funmoods Toolbar) - {A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} - C:\PROGRA~1\Funmoods\1.5.23.22\escorTlbr.dll File not found
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe ()
O4 - HKCU..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Free YouTube Download - C:\Documents and Settings\Arijana\Application Data\DVDVideoSoftIEHelpers\freeytvdownloader.htm ()
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Documents and Settings\Arijana\Application Data\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 77.77.192.10 77.78.192.10
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7B38693C-F75E-4C5B-B5FE-83E3B6CD2CB7}: DhcpNameServer = 77.77.192.10 77.78.192.10
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - AppInit_DLLs: (c:\docume~1\alluse~1\applic~1\pcperf~1\24897~1.175\{61d8b~1\pcpmngr.dll) - c:\Documents and Settings\All Users\Application Data\PC Performer Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\pcpmngr.dll ()
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O30 - LSA: Authentication Packages - (nwprovau) - C:\WINDOWS\System32\nwprovau.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012.05.03 18:21:56 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{a4028d8a-e799-11e1-96af-00197eb3f8cb}\Shell\AutoRun\command - "" = E:\fakerica//shmekerica.exe
O33 - MountPoints2\{a4028d8a-e799-11e1-96af-00197eb3f8cb}\Shell\Explore\command - "" = E:\fakerica//shmekerica.exe
O33 - MountPoints2\{a4028d8a-e799-11e1-96af-00197eb3f8cb}\Shell\Open\command - "" = E:\fakerica//shmekerica.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2012.11.29 23:26:19 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Arijana\Desktop\OTL (1).exe
[2012.11.28 23:45:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arijana\Local Settings\Application Data\Conduit
[2012.11.28 00:07:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arijana\Desktop\RootRepeal (2)
[2012.11.27 23:03:55 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Arijana\Start Menu\Programs\Administrative Tools
[2012.11.27 23:03:08 | 000,688,779 | R--- | C] (Swearware) -- C:\Documents and Settings\Arijana\Desktop\dds.pif
[2012.11.27 23:03:08 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF
[2012.11.27 22:13:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arijana\Desktop\akdjuiae
[2012.11.27 00:19:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows Live
[2012.11.27 00:19:32 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2012.11.25 22:33:07 | 001,146,696 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\Arijana\Desktop\wlsetup-custom[1].exe
[2012.11.25 22:23:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arijana\Local Settings\Application Data\Windows Live Writer
[2012.11.25 22:23:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arijana\Application Data\Windows Live Writer
[2012.11.25 22:23:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arijana\My Documents\My Weblog Posts
[2012.11.25 22:18:14 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live SkyDrive
[2012.11.14 00:19:37 | 001,239,552 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\Arijana\Desktop\wlsetup-web (1).exe
[2012.11.13 21:44:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Martau
[2012.11.13 21:44:31 | 000,000,000 | ---D | C] -- C:\Program Files\Total Uninstall 6
[2012.11.13 00:35:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Silverlight
[2012.11.06 23:13:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live
[2012.11.06 23:13:02 | 001,146,696 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\Arijana\Desktop\wlsetup-custom.exe
[2012.11.05 00:09:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SimilarSites
[2012.11.05 00:09:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arijana\Application Data\SimilarSites
[2012.11.01 01:24:30 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2012.10.31 23:53:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arijana\Application Data\PerformerSoft
[2012.10.31 23:52:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\PC Performer Manager
[2012.10.31 22:05:45 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_32.dll
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012.11.29 23:33:00 | 000,000,304 | ---- | M] () -- C:\WINDOWS\tasks\PC Performer Manager.job
[2012.11.29 23:30:05 | 000,000,986 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1757981266-920026266-299502267-1003UA.job
[2012.11.29 23:26:27 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Arijana\Desktop\OTL (1).exe
[2012.11.29 21:30:00 | 000,000,934 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1757981266-920026266-299502267-1003Core.job
[2012.11.28 23:48:34 | 000,458,326 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.11.28 23:48:34 | 000,076,220 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012.11.28 23:43:57 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.11.28 23:43:55 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.11.28 23:11:56 | 000,480,125 | ---- | M] () -- C:\Documents and Settings\Arijana\Desktop\adwcleaner.exe
[2012.11.28 00:06:27 | 000,464,491 | ---- | M] () -- C:\Documents and Settings\Arijana\Desktop\RootRepeal (2).zip
[2012.11.27 23:16:36 | 000,302,592 | ---- | M] () -- C:\Documents and Settings\Arijana\Desktop\3ttb5cqn.exe
[2012.11.27 23:03:14 | 000,688,779 | R--- | M] (Swearware) -- C:\Documents and Settings\Arijana\Desktop\dds.pif
[2012.11.27 21:53:33 | 000,090,452 | ---- | M] () -- C:\Documents and Settings\Arijana\Desktop\702256_288248421295583_1411537103_n.jpg
[2012.11.26 21:47:45 | 000,002,300 | ---- | M] () -- C:\Documents and Settings\Arijana\Desktop\Google Chrome.lnk
[2012.11.26 21:47:45 | 000,002,278 | ---- | M] () -- C:\Documents and Settings\Arijana\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012.11.26 19:23:09 | 000,050,331 | ---- | M] () -- C:\Documents and Settings\Arijana\Desktop\702248_4110372601703_1941507776_n.jpg
[2012.11.25 22:33:17 | 001,146,696 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Arijana\Desktop\wlsetup-custom[1].exe
[2012.11.21 00:18:16 | 000,060,858 | ---- | M] () -- C:\Documents and Settings\Arijana\Desktop\nikolina-e1353103283370.jpg
[2012.11.15 23:54:05 | 000,046,161 | ---- | M] () -- C:\Documents and Settings\Arijana\Desktop\539915_10151152534153403_944981554_n.jpg
[2012.11.15 13:24:08 | 001,087,785 | ---- | M] () -- C:\Documents and Settings\Arijana\Desktop\2012-11-15 13.24.09.jpg
[2012.11.15 13:24:00 | 001,245,966 | ---- | M] () -- C:\Documents and Settings\Arijana\Desktop\2012-11-15 13.24.00.jpg
[2012.11.15 12:47:24 | 001,300,472 | ---- | M] () -- C:\Documents and Settings\Arijana\Desktop\2012-11-15 12.47.24.jpg
[2012.11.15 12:47:02 | 001,294,637 | ---- | M] () -- C:\Documents and Settings\Arijana\Desktop\2012-11-15 12.47.02.jpg
[2012.11.15 12:37:50 | 001,264,918 | ---- | M] () -- C:\Documents and Settings\Arijana\Desktop\2012-11-15 12.37.51.jpg
[2012.11.15 12:37:24 | 001,210,052 | ---- | M] () -- C:\Documents and Settings\Arijana\Desktop\2012-11-15 12.37.24.jpg
[2012.11.15 12:37:16 | 001,367,358 | ---- | M] () -- C:\Documents and Settings\Arijana\Desktop\2012-11-15 12.37.16.jpg
[2012.11.14 00:18:56 | 001,239,552 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Arijana\Desktop\wlsetup-web (1).exe
[2012.11.13 21:44:34 | 000,000,727 | ---- | M] () -- C:\Documents and Settings\Arijana\Application Data\Microsoft\Internet Explorer\Quick Launch\Total Uninstall 6.lnk
[2012.11.13 21:44:34 | 000,000,709 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Total Uninstall 6.lnk
[2012.11.06 23:13:12 | 001,146,696 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Arijana\Desktop\wlsetup-custom.exe
[2012.11.05 00:09:10 | 000,486,871 | ---- | M] () -- C:\Documents and Settings\Arijana\Desktop\HTTPDebuggerPro.exe
[2012.10.31 22:35:47 | 000,264,616 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012.11.28 23:11:51 | 000,480,125 | ---- | C] () -- C:\Documents and Settings\Arijana\Desktop\adwcleaner.exe
[2012.11.28 00:06:26 | 000,464,491 | ---- | C] () -- C:\Documents and Settings\Arijana\Desktop\RootRepeal (2).zip
[2012.11.27 23:16:33 | 000,302,592 | ---- | C] () -- C:\Documents and Settings\Arijana\Desktop\3ttb5cqn.exe
[2012.11.27 21:53:31 | 000,090,452 | ---- | C] () -- C:\Documents and Settings\Arijana\Desktop\702256_288248421295583_1411537103_n.jpg
[2012.11.26 19:23:08 | 000,050,331 | ---- | C] () -- C:\Documents and Settings\Arijana\Desktop\702248_4110372601703_1941507776_n.jpg
[2012.11.21 00:18:09 | 000,060,858 | ---- | C] () -- C:\Documents and Settings\Arijana\Desktop\nikolina-e1353103283370.jpg
[2012.11.16 19:04:04 | 000,000,304 | ---- | C] () -- C:\WINDOWS\tasks\PC Performer Manager.job
[2012.11.15 23:54:04 | 000,046,161 | ---- | C] () -- C:\Documents and Settings\Arijana\Desktop\539915_10151152534153403_944981554_n.jpg
[2012.11.15 22:33:24 | 001,087,785 | ---- | C] () -- C:\Documents and Settings\Arijana\Desktop\2012-11-15 13.24.09.jpg
[2012.11.15 22:33:10 | 001,245,966 | ---- | C] () -- C:\Documents and Settings\Arijana\Desktop\2012-11-15 13.24.00.jpg
[2012.11.15 22:33:02 | 001,300,472 | ---- | C] () -- C:\Documents and Settings\Arijana\Desktop\2012-11-15 12.47.24.jpg
[2012.11.15 22:32:56 | 001,294,637 | ---- | C] () -- C:\Documents and Settings\Arijana\Desktop\2012-11-15 12.47.02.jpg
[2012.11.15 22:32:42 | 001,264,918 | ---- | C] () -- C:\Documents and Settings\Arijana\Desktop\2012-11-15 12.37.51.jpg
[2012.11.15 22:32:37 | 001,210,052 | ---- | C] () -- C:\Documents and Settings\Arijana\Desktop\2012-11-15 12.37.24.jpg
[2012.11.15 22:32:32 | 001,367,358 | ---- | C] () -- C:\Documents and Settings\Arijana\Desktop\2012-11-15 12.37.16.jpg
[2012.11.13 21:44:34 | 000,000,727 | ---- | C] () -- C:\Documents and Settings\Arijana\Application Data\Microsoft\Internet Explorer\Quick Launch\Total Uninstall 6.lnk
[2012.11.13 21:44:34 | 000,000,715 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Total Uninstall 6.lnk
[2012.11.13 21:44:34 | 000,000,709 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Total Uninstall 6.lnk
[2012.11.05 00:09:05 | 000,486,871 | ---- | C] () -- C:\Documents and Settings\Arijana\Desktop\HTTPDebuggerPro.exe
[2012.10.31 22:35:02 | 000,560,450 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-1757981266-920026266-299502267-1003-0.dat
[2012.10.29 13:05:49 | 000,281,658 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
[2012.09.19 00:10:44 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012.08.28 09:04:34 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\issacapi_bs-2.3.dll
[2012.08.28 09:04:34 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\issacapi_pe-2.3.dll
[2012.08.28 09:04:34 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\issacapi_se-2.3.dll
[2012.08.28 09:04:32 | 000,974,848 | ---- | C] () -- C:\WINDOWS\System32\cis-2.4.dll
[2012.08.21 15:33:16 | 000,003,584 | ---- | C] () -- C:\Documents and Settings\Arijana\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.05.03 20:09:28 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2012.05.03 20:07:28 | 000,264,616 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012.05.03 18:47:42 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2012.05.03 18:42:27 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4906.dll
[2012.05.03 18:32:07 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2012.05.03 18:30:39 | 000,000,008 | RHS- | C] () -- C:\WINDOWS\System32\Desktop_.ini
[2012.05.03 18:25:15 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2012.05.03 18:18:01 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat

========== ZeroAccess Check ==========

[2012.05.03 20:36:28 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2009.08.12 18:24:02 | 001,509,888 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009.08.12 18:23:34 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008.04.14 13:00:00 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== Alternate Data Streams ==========

@Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D1B5B4F1

< End of report >

Poslao: 30 Nov 2012 18:03
Idi na vrh
offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Izvini na čekanju. Kolega ima nekih obaveza pa ću ga ja zamijeniti.


Arrow Korak 1

Pokreni Google Chrome i idi na sljedeću adresu:

chrome:extensions

Nas stranici koja će ti se prikazati ukloni sledeće dodatke:

ADDICT-THING
Similar Sites
Software Assist


Nakon uklanjanja gore navedenih idi na stranicu chrome:plugins i tamo ukloni sljedeće plugin-ove:

Conduit Chrome Plugin
Conduit Radio Plugin



Arrow Korak 2

Ponovo pokreni program OTL dvoklikom na ikonu.

U bijeli okvir prozora gdje piše Custom Scans/Fixes iskopirati sljedeći tekst:

:OTL
SRV - File not found [Auto | Stopped] -- C:\Program Files\Protector by IB\ExtensionUpdaterService.exe -- (Protector by IB Updater)
IE - HKLM\..\URLSearchHook: {FE69C007-C452-4d3e-86D2-1730DF8BC871} - SOFTWARE\Classes\CLSID\{FE69C007-C452-4d3e-86D2-1730DF8BC871}\InprocServer32 File not found
IE - HKLM\..\SearchScopes\{154d339e-ccaa-49a5-9b38-6878ad4220bc}: "URL" = http://www.searchamong.com/searchview.php?source=6.....amp;query={searchTerms}&cat=webs&bar=true
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://www.startsearcher.com/?q={searchTerms}&src=IETB
IE - HKLM\..\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}: "URL" = http://start.funmoods.com/results.php?f=4&q={searchTerms}&a=nv1&chnl=nv1&cd=2XzuyEtN2Y1L1QzutDtDtC0BtAzztByCtA0BzztB0FtByBtCtN0D0Tzu0CtBtDtBtN1L2XzutBtFtCtFtDtFtAtDtC&cr=652193922
IE - HKCU\..\URLSearchHook: {FE69C007-C452-4d3e-86D2-1730DF8BC871} - SOFTWARE\Classes\CLSID\{FE69C007-C452-4d3e-86D2-1730DF8BC871}\InprocServer32 File not found
IE - HKCU\..\SearchScopes\{154d339e-ccaa-49a5-9b38-6878ad4220bc}: "URL" = http://www.searchamong.com/searchview.php?source=6.....amp;query={searchTerms}&cat=webs&bar=true
IE - HKCU\..\SearchScopes\{73ccfd25-abe2-4bdf-ac5d-28a470a4d234}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2269050&SSPV=IEAUTOBR
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2269050
IE - HKCU\..\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}: "URL" = http://start.funmoods.com/results.php?f=4&q={searchTerms}&a=nv1&chnl=nv1&cd=2XzuyEtN2Y1L1QzutDtDtC0BtAzztByCtA0BzztB0FtByBtCtN0D0Tzu0CtBtDtBtN1L2XzutBtFtCtFtDtFtAtDtC&cr=652193922
IE - HKCU\..\SearchScopes\{DCDBBF03-BC10-457D-911F-EFB0321D22BE}: "URL" = ${SRCH_SCP_URL}
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{dfefbe51-ca52-484b-adf0-6b158b05262d}: C:\Documents and Settings\All Users\Application Data\PC Performer Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\FirefoxExtension
[2012.10.31 22:11:21 | 000,000,000 | ---D | M] (Default Tab) -- C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\addon@defaulttab.com
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{dfefbe51-ca52-484b-adf0-6b158b05262d}: C:\Documents and Settings\All Users\Application Data\PC Performer Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\FirefoxExtension
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ARIJANA\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\A7DYHSJL.DEFAULT\EXTENSIONS\{687578B9-7132-4A7A-80E4-30EE31099E03}
[2012.05.04 16:45:23 | 000,000,000 | ---D | M] (ADDICT-THING) -- C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\4fa262bfa08bc@4fa262bfa08be.info
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ARIJANA\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\A7DYHSJL.DEFAULT\EXTENSIONS\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ARIJANA\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\A7DYHSJL.DEFAULT\EXTENSIONS\FFXTLBR@BABYLON.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ARIJANA\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\A7DYHSJL.DEFAULT\EXTENSIONS\FFXTLBR@FUNMOODS.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ARIJANA\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\A7DYHSJL.DEFAULT\EXTENSIONS\FFXTLBR@INCREDIBAR.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ARIJANA\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\A7DYHSJL.DEFAULT\EXTENSIONS\FFXTLBRA@SOFTONIC.COM
File not found (No name found) -- C:\PROGRAM FILES\PROTECTOR BY IB\FIREFOX
[2012.07.10 22:34:00 | 000,000,000 | ---D | M] (InternetSearch) -- C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\plugin@startsearcher.com
O2 - BHO: (Software Assist) - {11111111-1111-1111-1111-110011301126} - C:\Program Files\Software Assist\Software Assist.dll (Software Assist)
O2 - BHO: (Protector by IB) - {336D0C35-8A85-403a-B9D2-65C292C39087} - C:\Program Files\Protector by IB\Extension32.dll File not found
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Funmoods Helper Object) - {75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} - C:\PROGRA~1\Funmoods\1.5.23.22\bh\escort.dll File not found
O3 - HKLM\..\Toolbar: (no name) - {9E131A93-EED7-4BEB-B015-A0ADB30B5646} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Funmoods Toolbar) - {A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} - C:\PROGRA~1\Funmoods\1.5.23.22\escorTlbr.dll File not found
O33 - MountPoints2\{a4028d8a-e799-11e1-96af-00197eb3f8cb}\Shell\AutoRun\command - "" = E:\fakerica//shmekerica.exe
O33 - MountPoints2\{a4028d8a-e799-11e1-96af-00197eb3f8cb}\Shell\Explore\command - "" = E:\fakerica//shmekerica.exe
O33 - MountPoints2\{a4028d8a-e799-11e1-96af-00197eb3f8cb}\Shell\Open\command - "" = E:\fakerica//shmekerica.exe
O20 - AppInit_DLLs: (c:\docume~1\alluse~1\applic~1\pcperf~1\24897~1.175\{61d8b~1\pcpmngr.dll) - c:\Documents and Settings\All Users\Application Data\PC Performer Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\pcpmngr.dll ()

:files
C:\Documents and Settings\Arijana\Local Settings\Application Data\Conduit
C:\Documents and Settings\All Users\Application Data\SimilarSites
C:\Documents and Settings\Arijana\Application Data\SimilarSites
C:\Documents and Settings\All Users\Application Data\PC Performer Manager

:commands
[emptytemp]


Dobro provjeri da li je cijeli tekst kopiran!


Klikni taster Run Fix;

Izvještaj koji dobiješ iskopiraj ovde u poruci.



Question

Kakvo je sada stanje sa MSN-om i sistemom?

Poslao: 01 Dec 2012 18:13
Idi na vrh
offline
  • Pridružio: 13 Nov 2012
  • Poruke: 18

Napisano: 01 Dec 2012 18:11

All processes killed
========== OTL ==========
Service Protector by IB Updater stopped successfully!
Service Protector by IB Updater deleted successfully!
File C:\Program Files\Protector by IB\ExtensionUpdaterService.exe not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{FE69C007-C452-4d3e-86D2-1730DF8BC871} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FE69C007-C452-4d3e-86D2-1730DF8BC871}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{154d339e-ccaa-49a5-9b38-6878ad4220bc}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{154d339e-ccaa-49a5-9b38-6878ad4220bc}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}\ not found.
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{FE69C007-C452-4d3e-86D2-1730DF8BC871} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FE69C007-C452-4d3e-86D2-1730DF8BC871}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{154d339e-ccaa-49a5-9b38-6878ad4220bc}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{154d339e-ccaa-49a5-9b38-6878ad4220bc}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{73ccfd25-abe2-4bdf-ac5d-28a470a4d234}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73ccfd25-abe2-4bdf-ac5d-28a470a4d234}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{DCDBBF03-BC10-457D-911F-EFB0321D22BE}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DCDBBF03-BC10-457D-911F-EFB0321D22BE}\ not found.
Registry value HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{dfefbe51-ca52-484b-adf0-6b158b05262d} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{dfefbe51-ca52-484b-adf0-6b158b05262d}\ not found.
File C:\Documents and Settings\All Users\Application Data\PC Performer Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\FirefoxExtension not found.
C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\addon@defaulttab.com\defaulttab\skin folder moved successfully.
C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\addon@defaulttab.com\defaulttab\modules folder moved successfully.
C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\addon@defaulttab.com\defaulttab\content\bindings folder moved successfully.
C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\addon@defaulttab.com\defaulttab\content folder moved successfully.
C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\addon@defaulttab.com\defaulttab folder moved successfully.
C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\addon@defaulttab.com\defaults\preferences folder moved successfully.
C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\addon@defaulttab.com\defaults folder moved successfully.
C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\addon@defaulttab.com folder moved successfully.
Registry value HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{dfefbe51-ca52-484b-adf0-6b158b05262d} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{dfefbe51-ca52-484b-adf0-6b158b05262d}\ not found.
File C:\Documents and Settings\All Users\Application Data\PC Performer Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\FirefoxExtension not found.
C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\4fa262bfa08bc@4fa262bfa08be.info\content folder moved successfully.
C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\4fa262bfa08bc@4fa262bfa08be.info folder moved successfully.
C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\plugin@startsearcher.com\skin folder moved successfully.
C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\plugin@startsearcher.com\locale\en-US folder moved successfully.
C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\plugin@startsearcher.com\locale folder moved successfully.
C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\plugin@startsearcher.com\defaults\preferences folder moved successfully.
C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\plugin@startsearcher.com\defaults folder moved successfully.
C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\plugin@startsearcher.com\content folder moved successfully.
C:\Documents and Settings\Arijana\Application Data\Mozilla\Firefox\Profiles\a7dyhsjl.default\extensions\plugin@startsearcher.com folder moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110011301126}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110011301126}\ deleted successfully.
C:\Program Files\Software Assist\Software Assist.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{336D0C35-8A85-403a-B9D2-65C292C39087}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{9E131A93-EED7-4BEB-B015-A0ADB30B5646} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9E131A93-EED7-4BEB-B015-A0ADB30B5646}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a4028d8a-e799-11e1-96af-00197eb3f8cb}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a4028d8a-e799-11e1-96af-00197eb3f8cb}\ not found.
File E:\fakerica//shmekerica.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a4028d8a-e799-11e1-96af-00197eb3f8cb}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a4028d8a-e799-11e1-96af-00197eb3f8cb}\ not found.
File E:\fakerica//shmekerica.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a4028d8a-e799-11e1-96af-00197eb3f8cb}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a4028d8a-e799-11e1-96af-00197eb3f8cb}\ not found.
File E:\fakerica//shmekerica.exe not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:c:\docume~1\alluse~1\applic~1\pcperf~1\24897~1.175\{61d8b~1\pcpmngr.dll deleted successfully.
c:\Documents and Settings\All Users\Application Data\PC Performer Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\pcpmngr.dll moved successfully.
========== FILES ==========
C:\Documents and Settings\Arijana\Local Settings\Application Data\Conduit\ChromeExtData\plmlpkfpkijnlijgalnjaacllnjmoamo\Repository folder moved successfully.
C:\Documents and Settings\Arijana\Local Settings\Application Data\Conduit\ChromeExtData\plmlpkfpkijnlijgalnjaacllnjmoamo folder moved successfully.
C:\Documents and Settings\Arijana\Local Settings\Application Data\Conduit\ChromeExtData folder moved successfully.
C:\Documents and Settings\Arijana\Local Settings\Application Data\Conduit folder moved successfully.
C:\Documents and Settings\All Users\Application Data\SimilarSites folder moved successfully.
C:\Documents and Settings\Arijana\Application Data\SimilarSites folder moved successfully.
Folder move failed. C:\Documents and Settings\All Users\Application Data\PC Performer Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73} scheduled to be moved on reboot.
Folder move failed. C:\Documents and Settings\All Users\Application Data\PC Performer Manager\2.4.897.175 scheduled to be moved on reboot.
Folder move failed. C:\Documents and Settings\All Users\Application Data\PC Performer Manager scheduled to be moved on reboot.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Arijana
->Temp folder emptied: 940867771 bytes
->Temporary Internet Files folder emptied: 1233014 bytes
->FireFox cache emptied: 91711178 bytes
->Google Chrome cache emptied: 398147942 bytes
->Flash cache emptied: 35593 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: LocalService
->Temp folder emptied: 65984 bytes
->Temporary Internet Files folder emptied: 33177 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 402 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2402044 bytes
%systemroot%\System32 .tmp files removed: 2832913 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 102622290 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 167492857 bytes

Total Files Cleaned = 1.628,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 12012012_180609

Files\Folders moved on Reboot...
C:\Documents and Settings\All Users\Application Data\PC Performer Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73} folder moved successfully.
C:\Documents and Settings\All Users\Application Data\PC Performer Manager\2.4.897.175 folder moved successfully.
C:\Documents and Settings\All Users\Application Data\PC Performer Manager folder moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Dopuna: 01 Dec 2012 18:12

evo upravo sam usla na msn,ali se bojim da opet ne bude kao prosli put :)da sutra opet necu moci Smile
Hvala vam puno,fino je da ima dobrih ljudi kao sto ste vi da pomazu neznancima koji imaju problem:)

Dopuna: 01 Dec 2012 18:13

i ako imate neki savjet koji antivirus da skinem jer sad nemam nijedan Smile

Poslao: 01 Dec 2012 18:36
Idi na vrh
offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Potrebno je još da uradiš sljedeće:



Arrow

Ponovo pokreni OTL i klikni na dugme CleanUp.



Arrow

Ponovo pokreni AdwCleaner
Klikni na dugme Uninstall i pričekaj da se postupak deinstalacije završi.




Arrow

Instaliraj bilo koji AV, ali neka to bude legalna verzija.
Ukoliko nemaš novaca ili ne želiš da ga izdvojiš za neki komercijalni AV program, na raspolaganju ti se nalaze kvalitetni besplatni AV programi poput Avast Free, AVG Free, Avira Free, Microsoft Security Essentials, Panda Cloud AV, itd.
Nemoj koristiti piratske verzije AV programa!!!



Arrow

Preporučujem da za zaštitu USB memorijskih uređaja koristiš MCShield.
Nema nikakve veze sa antivirus-om tj. neće ometati njegov rad, a pokazao se kao jedan od najboljih vida zaštite od malware-a koji se prenosi putem USB mem. uređaja.


Home Page MCShield-a: http://amf.mycity.rs/mcshield/

Više o MCShield-u možeš saznati u ovoj temi: http://www.mycity.rs/MyCity-Laboratorija/MCShield-v2.html

Facebook stranica MCShield-a: http://www.facebook.com/MCShield



Arrow

Posjeti temu Testirajte da li vam je pretraživač ranjiv, pročitaj i isprati link koji stoji u njoj.

Poslao: 01 Dec 2012 19:27
Idi na vrh
offline
  • Pridružio: 13 Nov 2012
  • Poruke: 18

evo sve sam uradila Smile hvala puno jos jednom Poljubac

MyCity » Ambulanta -> Arhiva Ambulante » Problem sa msnom

Ko je trenutno na forumu
 

Ukupno su 769 korisnika na forumu :: 32 registrovanih, 4 sakrivenih i 733 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: A.R.Chafee.Jr., Andrija357, antonije64, Apok, Arahne, aramis s, Areal84, ArmyBoss, Atomski čoban, ccoogg123, debeli, FileFinder, hologram, Kubovac, mercedesamg, Mercury, Metanoja, Miloskec, MiroslavD, Nemanja.M, nemkea71, NoOneEver Dreams, nuke92, operniki, panzerwaffe, pein, procesor, RJ, robert1979, Smiljke, vathra, |_MeD_|