MyCity » Ambulanta -> Arhiva Ambulante » Provera, ima nekog malware

Provera, ima nekog malware

Napisano na dan: 15.10.2015

Provera, ima nekog malware

Sledeća strana

Pagination

Odgovori

Springfield Poslao: 15 Okt 2015 12:30 Idi na vrh
offline Springfield Moderator foruma 100%Milanista Information Technology Pridružio: 23 Avg 2008 Poruke: 2634 Gde živiš: Milan, Italy	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Brat mi je sinoc dok sam spavao valjda pokusao da instalira neku igru a bog sami zna sta je to bilo. Jutros kada sam upalio racunar pretrazivaci su bili u haosu bilo je instalirano 2-3 neka programa. To sam sve unistall pokrenuo malwarebytes i adwcleaner, ocistili su puno toga. Ali ne znam da sta jos nije ostalo. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:14-10-2015 01 Ran by Springfieldz0r (administrator) on ANDROID-19C7E46 (15-10-2015 12:16:52) Running from C:\Users\Springfieldz0r\Desktop Loaded Profiles: Springfieldz0r (Available Profiles: Springfieldz0r) Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AMD) C:\Windows\System32\atieclxx.exe (Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe (MyCity) C:\Program Files (x86)\MCShield\MCShieldRTM.exe (Flux Software LLC) C:\Users\Springfieldz0r\AppData\Local\FluxSoftware\Flux\flux.exe (Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Vimicro) C:\Windows\VM305_STI.EXE () C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5512912 2015-04-10] (Avast Software s.r.o.) HKLM-x32\...\Run: [BigDog305] => C:\Windows\VM305_STI.EXE [61440 2007-01-05] (Vimicro) HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [74752 2015-09-02] () HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation) HKU\S-1-5-21-2145776392-1472050533-324974990-1000\...\Run: [MCShield Monitor] => C:\Program Files (x86)\MCShield\mcshieldrtm.exe [650816 2014-04-11] (MyCity) HKU\S-1-5-21-2145776392-1472050533-324974990-1000\...\Run: [F.lux] => C:\Users\Springfieldz0r\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-24] (Flux Software LLC) HKU\S-1-5-21-2145776392-1472050533-324974990-1000\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-2145776392-1472050533-324974990-1000\...\RunOnce: [Uninstall C:\Users\Springfieldz0r\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Springfieldz0r\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910" HKU\S-1-5-21-2145776392-1472050533-324974990-1000\...\MountPoints2: F - F:\HTC_Sync_Manager_PC.exe HKU\S-1-5-21-2145776392-1472050533-324974990-1000\...\MountPoints2: {57ccab62-873a-11e2-94f3-6c626d84b408} - F:\autorun.exe HKU\S-1-5-21-2145776392-1472050533-324974990-1000\...\MountPoints2: {8404849c-4413-11e5-ba04-6c626d84b408} - F:\HTC_Sync_Manager_PC.exe HKU\S-1-5-21-2145776392-1472050533-324974990-1000\...\MountPoints2: {a6714d5b-f884-11e4-802b-6c626d84b408} - F:\Lenovo_Suite.exe HKU\S-1-5-21-2145776392-1472050533-324974990-1000\...\MountPoints2: {add5721a-ee48-11e4-aff1-6c626d84b408} - F:\Lenovo_Suite.exe HKU\S-1-5-21-2145776392-1472050533-324974990-1000\...\MountPoints2: {add5723b-ee48-11e4-aff1-6c626d84b408} - F:\Lenovo_Suite.exe HKU\S-1-5-21-2145776392-1472050533-324974990-1000\...\MountPoints2: {fc5b303d-ee8c-11e4-9fe9-6c626d84b408} - F:\Lenovo_Suite.exe HKU\S-1-5-21-2145776392-1472050533-324974990-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [11264 2009-07-14] (Microsoft Corporation) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-04-10] (Avast Software s.r.o.) ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Springfieldz0r\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Springfieldz0r\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Springfieldz0r\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Springfieldz0r\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Springfieldz0r\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Springfieldz0r\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Springfieldz0r\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Springfieldz0r\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.) GroupPolicyScripts: Restriction <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{66A5CDC7-99D2-489D-A009-A1DE0A19673D}: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{FAFABC99-746E-4865-8021-13F67C4B4BEF}: [DhcpNameServer] 192.168.1.254 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-2145776392-1472050533-324974990-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp HKU\S-1-5-21-2145776392-1472050533-324974990-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.msn.com/?pc=AV01 SearchScopes: HKLM-x32 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2145776392-1472050533-324974990-1000 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-08-12] (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-09-10] (Oracle Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-04-10] (Avast Software s.r.o.) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-09-15] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-10] (Oracle Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-08-12] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-09-10] (Oracle Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-10] (Avast Software s.r.o.) BHO-x32: No Name -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> => No File BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL => No File BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-09-15] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-10] (Oracle Corporation) Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2014-03-12] (Microsoft Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies) Handler: WSISVCUchrome - No CLSID Value Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll No File Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll No File Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll No File FireFox: ======== FF ProfilePath: C:\Users\Springfieldz0r\AppData\Roaming\Mozilla\Firefox\Profiles\urh1dwro.default-1406026697443 FF Homepage: hxxp://www.google.com/ FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_207.dll [2015-10-14] () FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-09-10] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-09-10] (Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled [No File] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_207.dll [2015-10-14] () FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-09-10] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-09-10] (Oracle Corporation) FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 -> C:\Program Files (x86)\Yahoo!\Shared\npYState.dll [No File] FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File] FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-04-22] (Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation) FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Reader 3\npnitromozilla.dll [2013-03-26] (Nitro PDF) FF Plugin-x32: @t.garena.com/garenatalk -> C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll [2014-07-07] ( Garena) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-04-22] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-09-27] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2015-03-13] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2015-03-13] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2015-03-13] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2015-03-13] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2015-03-13] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll [2012-06-28] (Nullsoft, Inc.) FF SearchPlugin: C:\Users\Springfieldz0r\AppData\Roaming\Mozilla\Firefox\Profiles\urh1dwro.default-1406026697443\searchplugins\bing-avast.xml [2014-07-21] FF Extension: Valence - C:\Users\Springfieldz0r\AppData\Roaming\Mozilla\Firefox\Profiles\urh1dwro.default-1406026697443\Extensions\fxdevtools-adapters@mozilla.org [2015-09-29] FF Extension: Qualys BrowserCheck - C:\Users\Springfieldz0r\AppData\Roaming\Mozilla\Firefox\Profiles\urh1dwro.default-1406026697443\Extensions\{7D2FB79E-E58C-4DB5-A36F-AC1C73967F4D} [2014-07-22] FF Extension: Firebug - C:\Users\Springfieldz0r\AppData\Roaming\Mozilla\Firefox\Profiles\urh1dwro.default-1406026697443\Extensions\firebug@software.joehewitt.com.xpi [2014-07-22] FF Extension: Awesome screenshot: Capture and Annotate - C:\Users\Springfieldz0r\AppData\Roaming\Mozilla\Firefox\Profiles\urh1dwro.default-1406026697443\Extensions\jid0-GXjLLfbCoAx0LcltEdFrEkQdQPI@jetpack.xpi [2014-07-22] FF Extension: Web Developer - C:\Users\Springfieldz0r\AppData\Roaming\Mozilla\Firefox\Profiles\urh1dwro.default-1406026697443\Extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi [2014-07-22] FF Extension: Adblock Plus - C:\Users\Springfieldz0r\AppData\Roaming\Mozilla\Firefox\Profiles\urh1dwro.default-1406026697443\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-07-22] FF Extension: ADB Helper - C:\Users\Springfieldz0r\AppData\Roaming\Mozilla\Firefox\Profiles\ezmvm3rx.dev-edition-default\Extensions\adbhelper@mozilla.org [2015-10-07] FF Extension: Valence - C:\Users\Springfieldz0r\AppData\Roaming\Mozilla\Firefox\Profiles\ezmvm3rx.dev-edition-default\Extensions\fxdevtools-adapters@mozilla.org [2015-10-02] FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-03-14] Chrome: ======= CHR HomePage: Default -> hxxp://www.google.com/ CHR StartupUrls: Default -> "hxxp://www.google.com/" CHR Profile: C:\Users\Springfieldz0r\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Avast Online Security) - C:\Users\Springfieldz0r\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-04-30] CHR Extension: (Плаћања у Chrome веб-продавници) - C:\Users\Springfieldz0r\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-11] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-19] ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-03-31] (Advanced Micro Devices, Inc.) [File not signed] R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-04-10] (Avast Software s.r.o.) R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4030800 2015-03-19] (Avast Software) S4 AXIS Camera Management; C:\Program Files (x86)\Axis Communications\AXIS Camera Management 4\AcmService.exe [17920 2013-09-05] (Axis Communications) [File not signed] S4 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes) S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes) S4 MTel_ontenegro Imola Modem Device Helper; C:\Program Files (x86)\HSPA USB MODEM\BackgroundService\ServiceManager.exe [53312 2012-03-14] () S4 NitroReaderDriverReadSpool3; C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe [230416 2013-03-26] (Nitro PDF Software) S4 nlsX86cc; C:\Windows\SysWOW64\nlssrv32.exe [66560 2011-02-15] (Nalpeiron Ltd.) [File not signed] S4 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [File not signed] S4 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed] R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH) S4 UI Assistant Service; C:\Program Files (x86)\Join Air\AssistantServices.exe [252784 2010-07-14] () S4 UleadBurningHelper; C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2004-12-13] (Ulead Systems, Inc.) [File not signed] R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [X] R3 WinHttpAutoProxySvc; winhttp.dll [X] ===================== Drivers (Whitelisted) ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [62152 2014-10-28] (Advanced Micro Devices, Inc.) R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-04-10] () R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [88408 2015-04-10] (Avast Software s.r.o.) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-04-10] (Avast Software s.r.o.) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-04-10] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-04-10] (Avast Software s.r.o.) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-04-10] (Avast Software s.r.o.) S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [136752 2015-04-10] (Avast Software s.r.o.) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [271200 2015-04-10] () S2 BT848; C:\Windows\System32\drivers\BT848.sys [421248 2009-12-27] (Illusion & Hope. Porting to AMD64 by Sergey Sakharov.) [File not signed] R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-07-11] (DT Soft Ltd) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [30112 2013-03-08] (REALiX(tm)) S3 jrdusbser; C:\Windows\System32\DRIVERS\jrdusbser.sys [120832 2011-06-20] (TCT International Mobile Ltd) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation) S3 MODEMCSA; C:\Windows\System32\drivers\MODEMCSA.sys [24064 2009-07-14] (Microsoft Corporation) S3 pfc; C:\Windows\SysWOW64\drivers\pfc.sys [10368 2013-02-17] (Padus, Inc.) [File not signed] S3 s116bus; C:\Windows\System32\DRIVERS\s116bus.sys [108296 2007-04-03] (MCCI Corporation) S3 s116mgmt; C:\Windows\System32\DRIVERS\s116mgmt.sys [126216 2007-04-03] (MCCI Corporation) S3 s116nd5; C:\Windows\System32\DRIVERS\s116nd5.sys [31496 2007-04-03] (MCCI Corporation) S3 s116unic; C:\Windows\System32\DRIVERS\s116unic.sys [130824 2007-04-03] (MCCI Corporation) S3 smserial; C:\Windows\System32\DRIVERS\smserial.sys [1202688 2009-10-26] (Motorola Inc.) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2013-07-17] () [File not signed] S3 TS_AR5416; C:\Windows\System32\DRIVERS\ts_athwx.sys [2157672 2013-07-23] (TamoSoft) S3 TS_ARN5416; C:\Windows\System32\DRIVERS\ts_athrx.sys [3543752 2013-08-16] (TamoSoft) S3 ULCDRHlp; C:\Windows\SysWOW64\Drivers\ULCDRHlp.sys [27392 2004-12-23] (Ulead Systems, Inc.) [File not signed] R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [273824 2015-03-19] (Avast Software) R3 vvftav; C:\Windows\System32\drivers\vvftav.sys [300800 2007-02-02] (Vimicro Corporation) R3 ZSMC0305; C:\Windows\System32\Drivers\usbVM305.sys [1541120 2007-03-08] (Vimicro Corporation) S2 AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [X] S3 GGSAFERDriver; \??\C:\Program Files (x86)\Garena Plus\Room\safedrv.sys [X] S3 VGPU; System32\drivers\rdvgkmd.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-10-15 12:16 - 2015-10-15 12:17 - 00024024 _____ C:\Users\Springfieldz0r\Desktop\FRST.txt 2015-10-15 12:16 - 2015-10-15 12:16 - 02196992 _____ (Farbar) C:\Users\Springfieldz0r\Desktop\FRST64.exe 2015-10-15 12:16 - 2015-10-15 12:16 - 00000000 ____D C:\FRST 2015-10-15 12:04 - 2015-10-15 12:06 - 00000000 ____D C:\AdwCleaner 2015-10-15 12:04 - 2015-10-15 12:04 - 01682432 _____ C:\Users\Springfieldz0r\Desktop\AdwCleaner.exe 2015-10-15 11:54 - 2015-10-15 11:54 - 00001058 _____ C:\Users\Springfieldz0r\Desktop\mw.txt 2015-10-15 11:53 - 2015-10-15 11:53 - 00000080 _____ C:\Users\Springfieldz0r\AppData\Roaming\Microsoft\Windows\Start Menu\uTorrent.lnk 2015-10-15 11:53 - 2015-10-15 11:53 - 00000080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\uTorrent.lnk 2015-10-15 11:19 - 2015-10-15 11:53 - 00001096 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2015-10-15 11:10 - 2015-10-15 11:10 - 06677440 _____ (Piriform Ltd) C:\Users\Springfieldz0r\Desktop\ccsetup510.exe 2015-10-14 22:50 - 2015-10-15 11:54 - 00000971 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2015-10-14 22:25 - 2015-03-16 15:28 - 00000827 _____ C:\Windows\system32\Drivers\etc\hp.bak 2015-10-14 22:10 - 2015-10-15 12:09 - 00001062 _____ C:\Windows\Tasks\uNLPYpE2wFj7Yxy8lFALGeISQg1.job 2015-10-14 22:10 - 2015-10-15 12:09 - 00001048 _____ C:\Windows\Tasks\QfkxpKwSAgCiweduRiQ5.job 2015-10-14 22:10 - 2015-10-14 22:10 - 00004120 _____ C:\Windows\System32\Tasks\uNLPYpE2wFj7Yxy8lFALGeISQg1 2015-10-14 22:10 - 2015-10-14 22:10 - 00004106 _____ C:\Windows\System32\Tasks\QfkxpKwSAgCiweduRiQ5 2015-10-14 22:08 - 2015-10-14 22:08 - 00000004 _____ C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7 2015-10-14 20:40 - 2015-10-14 20:40 - 00054326 _____ C:\Users\Springfieldz0r\Desktop\fa.tif 2015-10-14 14:05 - 2015-08-06 20:04 - 14176768 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2015-10-14 14:05 - 2015-08-06 20:03 - 01866752 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2015-10-14 14:05 - 2015-08-06 19:44 - 12875776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2015-10-14 14:05 - 2015-08-06 19:44 - 01498624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll 2015-10-14 14:02 - 2015-09-18 21:31 - 00391784 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-10-14 14:02 - 2015-09-18 20:58 - 00345688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2015-10-14 14:02 - 2015-09-16 06:36 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-10-14 14:02 - 2015-09-16 06:36 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2015-10-14 14:02 - 2015-09-16 06:22 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-10-14 14:02 - 2015-09-16 06:21 - 02886656 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-10-14 14:02 - 2015-09-16 06:21 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-10-14 14:02 - 2015-09-16 06:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2015-10-14 14:02 - 2015-09-16 06:14 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-10-14 14:02 - 2015-09-16 06:13 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-10-14 14:02 - 2015-09-16 06:10 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-10-14 14:02 - 2015-09-16 06:08 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2015-10-14 14:02 - 2015-09-16 06:01 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2015-10-14 14:02 - 2015-09-16 05:58 - 20357632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2015-10-14 14:02 - 2015-09-16 05:58 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-10-14 14:02 - 2015-09-16 05:50 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2015-10-14 14:02 - 2015-09-16 05:45 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2015-10-14 14:02 - 2015-09-16 05:43 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-10-14 14:02 - 2015-09-16 05:41 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2015-10-14 14:02 - 2015-09-16 05:33 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2015-10-14 14:02 - 2015-09-16 05:33 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2015-10-14 14:02 - 2015-09-16 05:32 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2015-10-14 14:02 - 2015-09-16 05:32 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2015-10-14 14:02 - 2015-09-16 05:31 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2015-10-14 14:02 - 2015-09-16 05:29 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-10-14 14:02 - 2015-09-16 05:29 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-10-14 14:02 - 2015-09-16 05:28 - 02279936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2015-10-14 14:02 - 2015-09-16 05:26 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-10-14 14:02 - 2015-09-16 05:26 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2015-10-14 14:02 - 2015-09-16 05:26 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2015-10-14 14:02 - 2015-09-16 05:24 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2015-10-14 14:02 - 2015-09-16 05:23 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2015-10-14 14:02 - 2015-09-16 05:22 - 14458368 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-10-14 14:02 - 2015-09-16 05:22 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2015-10-14 14:02 - 2015-09-16 05:22 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2015-10-14 14:02 - 2015-09-16 05:15 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2015-10-14 14:02 - 2015-09-16 05:10 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2015-10-14 14:02 - 2015-09-16 05:07 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2015-10-14 14:02 - 2015-09-16 05:06 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2015-10-14 14:02 - 2015-09-16 05:05 - 04527616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2015-10-14 14:02 - 2015-09-16 05:05 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2015-10-14 14:02 - 2015-09-16 05:04 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2015-10-14 14:02 - 2015-09-16 04:59 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-10-14 14:02 - 2015-09-16 04:58 - 12853760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2015-10-14 14:02 - 2015-09-16 04:58 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2015-10-14 14:02 - 2015-09-16 04:56 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2015-10-14 14:02 - 2015-09-16 04:55 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2015-10-14 14:02 - 2015-09-16 04:55 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2015-10-14 14:02 - 2015-09-16 04:48 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2015-10-14 14:02 - 2015-09-16 04:37 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2015-10-14 14:02 - 2015-09-16 04:34 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2015-10-14 14:02 - 2015-09-16 04:32 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2015-10-14 14:01 - 2015-09-16 06:48 - 25851904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-10-14 14:01 - 2015-09-16 06:21 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-10-14 14:01 - 2015-09-16 06:21 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2015-10-14 14:01 - 2015-09-16 06:09 - 05990912 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-10-14 14:01 - 2015-09-16 06:08 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2015-10-14 14:01 - 2015-09-16 06:08 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2015-10-14 14:01 - 2015-09-16 06:08 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-10-14 14:01 - 2015-09-16 05:46 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-10-14 14:01 - 2015-09-16 05:45 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-10-14 14:01 - 2015-09-16 05:31 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2015-10-14 14:01 - 2015-09-16 05:28 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2015-10-14 14:01 - 2015-09-16 05:11 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-10-14 13:58 - 2015-09-29 05:16 - 05569472 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2015-10-14 13:58 - 2015-09-29 05:13 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2015-10-14 13:58 - 2015-09-29 05:11 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2015-10-14 13:58 - 2015-09-29 05:11 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2015-10-14 13:58 - 2015-09-29 05:11 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2015-10-14 13:58 - 2015-09-29 05:11 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2015-10-14 13:58 - 2015-09-29 05:11 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2015-10-14 13:58 - 2015-09-29 05:11 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2015-10-14 13:58 - 2015-09-29 05:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2015-10-14 13:58 - 2015-09-29 05:11 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2015-10-14 13:58 - 2015-09-29 05:10 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2015-10-14 13:58 - 2015-09-29 05:10 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2015-10-14 13:58 - 2015-09-29 05:10 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-10-14 13:58 - 2015-09-29 05:10 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2015-10-14 13:58 - 2015-09-29 05:10 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-10-14 13:58 - 2015-09-29 05:10 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2015-10-14 13:58 - 2015-09-29 05:10 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2015-10-14 13:58 - 2015-09-29 05:10 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2015-10-14 13:58 - 2015-09-29 05:10 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2015-10-14 13:58 - 2015-09-29 05:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2015-10-14 13:58 - 2015-09-29 05:10 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2015-10-14 13:58 - 2015-09-29 05:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2015-10-14 13:58 - 2015-09-29 05:09 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2015-10-14 13:58 - 2015-09-29 05:05 - 03990976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2015-10-14 13:58 - 2015-09-29 05:05 - 03936192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2015-10-14 13:58 - 2015-09-29 05:05 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2015-10-14 13:58 - 2015-09-29 05:05 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2015-10-14 13:58 - 2015-09-29 05:02 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 05:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 04:59 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2015-10-14 13:58 - 2015-09-29 04:59 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2015-10-14 13:58 - 2015-09-29 04:59 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2015-10-14 13:58 - 2015-09-29 04:59 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2015-10-14 13:58 - 2015-09-29 04:59 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2015-10-14 13:58 - 2015-09-29 04:59 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2015-10-14 13:58 - 2015-09-29 04:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2015-10-14 13:58 - 2015-09-29 04:58 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2015-10-14 13:58 - 2015-09-29 04:58 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2015-10-14 13:58 - 2015-09-29 04:58 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2015-10-14 13:58 - 2015-09-29 04:57 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2015-10-14 13:58 - 2015-09-29 04:57 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2015-10-14 13:58 - 2015-09-29 04:57 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2015-10-14 13:58 - 2015-09-29 04:57 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2015-10-14 13:58 - 2015-09-29 04:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2015-10-14 13:58 - 2015-09-29 04:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 04:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 03:50 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2015-10-14 13:58 - 2015-09-29 03:49 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2015-10-14 13:58 - 2015-09-29 03:49 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2015-10-14 13:58 - 2015-09-29 03:43 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2015-10-14 13:58 - 2015-09-29 03:43 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2015-10-14 13:58 - 2015-09-29 03:40 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 03:40 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 03:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2015-10-14 13:58 - 2015-09-29 03:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2015-10-14 13:58 - 2015-09-25 20:07 - 03168768 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2015-10-14 13:58 - 2015-09-25 20:07 - 02607104 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2015-10-14 13:58 - 2015-09-25 20:07 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2015-10-14 13:58 - 2015-09-25 20:07 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2015-10-14 13:58 - 2015-09-25 20:07 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2015-10-14 13:58 - 2015-09-25 20:07 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2015-10-14 13:58 - 2015-09-25 20:07 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2015-10-14 13:58 - 2015-09-25 20:06 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2015-10-14 13:58 - 2015-09-25 20:06 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2015-10-14 13:58 - 2015-09-25 20:06 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2015-10-14 13:58 - 2015-09-25 20:06 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll 2015-10-14 13:58 - 2015-09-25 19:59 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2015-10-14 13:58 - 2015-09-25 19:59 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2015-10-14 13:58 - 2015-09-25 19:59 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2015-10-14 13:58 - 2015-09-25 19:59 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2015-10-14 13:58 - 2015-09-25 19:58 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2015-10-14 13:58 - 2015-09-15 20:17 - 00157016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2015-10-14 13:58 - 2015-09-15 20:17 - 00097112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2015-10-14 13:58 - 2015-09-15 20:11 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2015-10-14 13:58 - 2015-09-15 20:11 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2015-10-14 13:58 - 2015-09-15 20:11 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2015-10-14 13:58 - 2015-09-15 20:11 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2015-10-14 13:58 - 2015-09-15 20:11 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2015-10-14 13:58 - 2015-09-15 20:11 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2015-10-14 13:58 - 2015-09-15 20:10 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2015-10-14 13:58 - 2015-09-15 19:36 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2015-10-14 13:58 - 2015-09-15 19:36 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2015-10-14 13:58 - 2015-09-15 19:36 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2015-10-14 13:58 - 2015-09-15 19:35 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2015-10-14 13:57 - 2015-10-01 20:06 - 00692672 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2015-10-14 13:57 - 2015-10-01 20:04 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2015-10-14 13:57 - 2015-10-01 20:00 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe 2015-10-14 13:57 - 2015-10-01 20:00 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll 2015-10-14 13:57 - 2015-10-01 20:00 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll 2015-10-14 13:57 - 2015-10-01 20:00 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll 2015-10-14 13:57 - 2015-10-01 20:00 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe 2015-10-14 13:57 - 2015-10-01 19:50 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll 2015-10-14 13:57 - 2015-10-01 19:00 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2015-10-14 13:57 - 2015-07-18 15:08 - 00984448 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00901264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-eventing-provider-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll 2015-10-14 13:57 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll 2015-10-14 13:35 - 2015-10-14 17:17 - 00000000 ____D C:\Users\Springfieldz0r\Desktop\Oprema glavna 2015-10-14 11:01 - 2015-10-14 11:35 - 00000000 ____D C:\Users\Springfieldz0r\Desktop\Zdraks 2015-10-12 17:30 - 2015-10-12 17:30 - 00134844 _____ C:\Users\Springfieldz0r\Desktop\SODGEAR - Military equipment - Abbigliamento militare - boonie hat athena trekking legenda vestiario misure carabinieri.htm 2015-10-12 17:30 - 2015-10-12 17:30 - 00000000 ____D C:\Users\Springfieldz0r\Desktop\SODGEAR - Military equipment - Abbigliamento militare - boonie hat athena trekking legenda vestiario misure carabinieri_files 2015-10-12 16:32 - 2015-10-12 16:32 - 00072632 _____ C:\Users\Springfieldz0r\Desktop\nama.psd 2015-10-11 11:59 - 2015-10-11 11:59 - 00136935 _____ C:\Users\Springfieldz0r\Desktop\destroy-earth.zip 2015-10-11 11:59 - 2015-10-11 11:59 - 00000000 ____D C:\Users\Springfieldz0r\Desktop\destroy-earth 2015-10-10 21:17 - 2015-10-10 21:17 - 00241400 _____ C:\Users\Springfieldz0r\Desktop\Green Background.psd 2015-10-10 21:05 - 2015-10-10 21:06 - 00009678 _____ C:\Users\Springfieldz0r\Desktop\mentes.html 2015-10-10 21:04 - 2015-10-10 21:04 - 00008879 _____ C:\Users\Springfieldz0r\Desktop\New Text Document (2).txt 2015-10-10 18:23 - 2015-10-10 18:23 - 00002013 _____ C:\Users\Springfieldz0r\Desktop\menutest.html 2015-10-10 16:34 - 2015-10-10 16:34 - 00006844 _____ C:\Users\Springfieldz0r\Desktop\source.zip 2015-10-10 16:34 - 2015-10-10 16:34 - 00000000 ____D C:\Users\Springfieldz0r\Desktop\source 2015-10-10 13:34 - 2015-10-10 13:34 - 01997332 _____ C:\Users\Springfieldz0r\Desktop\website-navigation-menu.psd 2015-10-09 00:10 - 2015-10-09 01:53 - 00000000 ____D C:\Users\Springfieldz0r\Desktop\Call of Duty 2 full game MP - SP -=AviaRa=- 2015-10-07 20:55 - 2015-10-07 20:55 - 00002689 _____ C:\Users\Springfieldz0r\Desktop\CSSReset.com - Keeping Footer At The Bottom Of The Page.zip 2015-10-07 20:55 - 2015-10-07 20:55 - 00000000 ____D C:\Users\Springfieldz0r\Desktop\CSSReset.com - Keeping Footer At The Bottom Of The Page 2015-10-07 15:15 - 2015-10-07 15:15 - 00000000 ____D C:\Users\Springfieldz0r\Desktop\img 2015-10-07 13:02 - 2015-10-07 13:02 - 00040878 _____ C:\Users\Springfieldz0r\Desktop\kode prepravka.txt 2015-10-06 21:41 - 2015-10-08 20:38 - 00001964 _____ C:\Users\Springfieldz0r\Desktop\slik.html 2015-10-06 21:38 - 2015-10-06 21:41 - 00000189 _____ C:\Users\Springfieldz0r\Desktop\New Text Document.txt 2015-10-06 18:55 - 2015-10-06 18:55 - 00089677 _____ C:\Users\Springfieldz0r\Desktop\CaptionHoverEffects.zip 2015-10-06 18:55 - 2015-10-06 18:55 - 00000000 ____D C:\Users\Springfieldz0r\Desktop\CaptionHoverEffects 2015-10-06 18:52 - 2015-10-06 18:52 - 00000000 ____D C:\Users\Springfieldz0r\Desktop\blog-post-image-hover-effects 2015-10-06 18:45 - 2015-10-06 18:45 - 00006914 _____ C:\Users\Springfieldz0r\Desktop\blog-post-image-hover-effects.zip 2015-10-06 18:42 - 2015-10-06 18:42 - 00008631 _____ C:\Users\Springfieldz0r\Desktop\profile-css-hover-effect.zip 2015-10-06 16:37 - 2015-10-06 18:39 - 00003544 _____ C:\Users\Springfieldz0r\Desktop\test.html 2015-10-05 21:05 - 2015-06-16 13:34 - 00042196 _____ C:\Users\Springfieldz0r\Desktop\introduction-slider.source.html 2015-10-05 14:34 - 2015-10-11 18:58 - 00000000 ____D C:\Users\Springfieldz0r\Desktop\Zoran 2015-10-02 19:32 - 2015-10-02 22:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird 2015-10-01 19:28 - 2015-10-01 19:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CSS3 Menu 2015-10-01 19:28 - 2015-10-01 19:28 - 00000000 ____D C:\Program Files (x86)\CSS3 Menu 2015-10-01 13:07 - 2015-10-15 11:52 - 00000751 _____ C:\Users\Springfieldz0r\Desktop\Pro Evolution Soccer 2016.lnk 2015-10-01 12:58 - 2015-10-01 12:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PES 2016 Patch Tuga Vicio v0.3 2015-10-01 01:01 - 2015-10-15 11:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2015-09-22 23:28 - 2015-10-01 13:02 - 00000000 ____D C:\Users\Springfieldz0r\AppData\Roaming\SmartSteamEmu 2015-09-21 20:33 - 2015-09-21 20:33 - 00000000 ____D C:\Users\Springfieldz0r\AppData\Local\Viber 2015-09-21 20:33 - 2015-09-21 20:33 - 00000000 ____D C:\Users\Springfieldz0r\.ViberPC 2015-09-21 20:33 - 2015-09-21 20:33 - 00000000 ____D C:\Users\Springfieldz0r\.QtWebEngineProcess 2015-09-20 20:24 - 2015-09-20 20:24 - 00000000 ____D C:\Users\Springfieldz0r\AppData\Local\CEF 2015-09-20 17:23 - 2015-09-20 17:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverEasy 2015-09-20 17:23 - 2015-09-20 17:23 - 00000000 ____D C:\Program Files\Easeware 2015-09-19 18:46 - 2015-09-19 18:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PES 2016 Patch Tuga Vicio v0.2 2015-09-18 15:02 - 2015-09-18 15:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PES 2016 Patch Tuga Vicio v0.1 2015-09-17 20:46 - 2015-10-15 11:54 - 00000585 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pro Evolution Soccer 2016.lnk ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-10-15 12:15 - 2012-10-10 05:17 - 01575872 _____ C:\Windows\WindowsUpdate.log 2015-10-15 12:10 - 2012-10-09 20:36 - 00000000 ____D C:\ProgramData\MCShield 2015-10-15 12:09 - 2014-01-11 18:19 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-10-15 12:08 - 2015-04-10 16:04 - 00055896 _____ C:\Windows\PFRO.log 2015-10-15 12:08 - 2015-04-02 11:18 - 00035917 _____ C:\Windows\setupact.log 2015-10-15 12:08 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-10-15 12:06 - 2009-07-14 06:45 - 00026112 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-10-15 12:06 - 2009-07-14 06:45 - 00026112 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-10-15 11:54 - 2015-04-06 18:22 - 00002395 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Mobile Device Center.lnk 2015-10-15 11:54 - 2015-03-13 20:16 - 00002507 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk 2015-10-15 11:54 - 2015-01-31 17:06 - 00000959 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk 2015-10-15 11:54 - 2014-10-16 10:22 - 00001039 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera 32.lnk 2015-10-15 11:54 - 2014-04-13 13:36 - 00002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nitro Reader 3.lnk 2015-10-15 11:54 - 2014-02-07 16:18 - 00002086 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk 2015-10-15 11:54 - 2014-02-02 05:23 - 00001989 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader.lnk 2015-10-15 11:54 - 2014-02-02 05:23 - 00001933 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Uninstaller.lnk 2015-10-15 11:54 - 2014-02-02 05:23 - 00001912 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Update.lnk 2015-10-15 11:54 - 2014-01-21 22:28 - 00001029 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinSCP.lnk 2015-10-15 11:54 - 2012-12-22 17:11 - 00002495 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Movie Maker 2.6.lnk 2015-10-15 11:54 - 2012-12-22 16:58 - 00001362 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk 2015-10-15 11:54 - 2012-12-22 16:58 - 00001293 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk 2015-10-15 11:54 - 2012-12-22 16:57 - 00001446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk 2015-10-15 11:54 - 2012-12-18 13:49 - 00001865 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk 2015-10-15 11:54 - 2012-12-02 10:33 - 00001093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk 2015-10-15 11:54 - 2012-11-17 20:49 - 00001085 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Widget Browser.lnk 2015-10-15 11:54 - 2012-11-17 20:47 - 00000985 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk 2015-10-15 11:54 - 2012-11-09 23:31 - 00002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2015-10-15 11:54 - 2012-10-17 15:03 - 00002474 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk 2015-10-15 11:54 - 2012-10-10 05:18 - 00001333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk 2015-10-15 11:54 - 2012-10-10 05:18 - 00001314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk 2015-10-15 11:54 - 2009-07-14 06:57 - 00001511 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2015-10-15 11:54 - 2009-07-14 06:57 - 00001292 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk 2015-10-15 11:54 - 2009-07-14 06:57 - 00001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk 2015-10-15 11:54 - 2009-07-14 06:54 - 00001198 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk 2015-10-15 11:53 - 2015-03-09 13:30 - 00001131 _____ C:\Users\Public\Desktop\Pes 2015 Selector.lnk 2015-10-15 11:53 - 2015-03-06 19:43 - 00001012 _____ C:\Users\Springfieldz0r\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Viber.lnk 2015-10-15 11:53 - 2014-06-25 01:03 - 00001979 _____ C:\Users\Public\Desktop\PCSX2 1.2.1 (r5875).lnk 2015-10-15 11:53 - 2014-03-17 23:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro 2015-10-15 11:53 - 2013-12-21 17:33 - 00001768 _____ C:\Users\Public\Desktop\Farming Simulator 2013 .lnk 2015-10-15 11:53 - 2012-10-13 22:14 - 00000000 ____D C:\Users\Springfieldz0r\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2015-10-15 11:53 - 2012-10-09 20:30 - 00001413 _____ C:\Users\Springfieldz0r\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-10-15 11:53 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2015-10-15 11:53 - 2009-07-14 07:01 - 00001218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk 2015-10-15 11:53 - 2009-07-14 06:49 - 00001246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk 2015-10-15 11:52 - 2015-03-24 12:47 - 00000726 _____ C:\Users\Springfieldz0r\Desktop\Dragonball Xenoverse.lnk 2015-10-15 11:52 - 2014-12-21 13:00 - 00001224 _____ C:\Users\Springfieldz0r\Desktop\Counter-Strike v42.lnk 2015-10-15 11:52 - 2014-12-04 14:46 - 00001121 _____ C:\Users\Springfieldz0r\Desktop\Pro Evolution Soccer 2015.lnk 2015-10-15 11:52 - 2014-10-06 18:04 - 00000727 _____ C:\Users\Springfieldz0r\Desktop\GRID Autosport.lnk 2015-10-15 11:52 - 2014-07-24 14:19 - 00000898 _____ C:\Users\Springfieldz0r\Desktop\Photoshop - Shortcut.lnk 2015-10-15 11:52 - 2012-12-04 17:59 - 00002003 _____ C:\Users\Springfieldz0r\Desktop\ICCup Launcher.lnk 2015-10-15 11:37 - 2012-10-09 21:15 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-10-15 11:35 - 2014-01-11 18:19 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-10-15 11:20 - 2015-07-01 16:39 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-10-15 11:19 - 2015-07-01 16:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2015-10-15 11:19 - 2015-07-01 16:39 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware 2015-10-15 11:10 - 2012-12-04 17:49 - 00000000 ____D C:\Program Files\CCleaner 2015-10-15 11:09 - 2014-12-26 11:54 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task 2015-10-14 23:20 - 2013-10-18 00:56 - 00000000 ____D C:\Windows\system32\MRT 2015-10-14 23:12 - 2012-10-11 07:34 - 143481208 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2015-10-14 23:09 - 2012-12-22 20:49 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2015-10-14 23:08 - 2012-11-15 20:53 - 00000000 ____D C:\ProgramData\Microsoft Help 2015-10-14 23:08 - 2009-07-14 04:34 - 00000833 _____ C:\Windows\win.ini 2015-10-14 22:47 - 2009-07-14 07:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD 2015-10-14 22:33 - 2012-10-10 07:54 - 00000000 ____D C:\Users\Springfieldz0r\AppData\Roaming\uTorrent 2015-10-14 22:24 - 2012-10-17 18:24 - 00000000 ____D C:\Program Files (x86)\ACMilan-Script 4.5 white 2015-10-14 22:22 - 2012-10-09 20:38 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2015-10-14 22:18 - 2014-05-16 22:07 - 00719506 _____ C:\Windows\system32\perfh019.dat 2015-10-14 22:18 - 2014-05-16 22:07 - 00151752 _____ C:\Windows\system32\perfc019.dat 2015-10-14 22:18 - 2009-07-14 07:13 - 01657982 _____ C:\Windows\system32\PerfStringBackup.INI 2015-10-14 20:48 - 2012-10-10 19:33 - 00000600 _____ C:\Users\Springfieldz0r\AppData\Roaming\winscp.rnd 2015-10-14 20:37 - 2012-10-09 21:15 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2015-10-14 20:37 - 2012-10-09 21:15 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2015-10-14 20:37 - 2012-10-09 21:15 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2015-10-14 20:22 - 2013-01-15 15:47 - 00000132 _____ C:\Users\Springfieldz0r\AppData\Roaming\Adobe PNG Format CS6 Prefs 2015-10-14 18:30 - 2013-02-14 17:26 - 00001456 _____ C:\Users\Springfieldz0r\AppData\Local\Adobe Save for Web 13.0 Prefs 2015-10-14 12:34 - 2012-12-03 08:04 - 00000000 ____D C:\Users\Springfieldz0r\AppData\Local\Eclipse 2015-10-13 22:07 - 2012-10-14 07:47 - 00000000 ____D C:\Users\Springfieldz0r\AppData\Roaming\Skype 2015-10-12 15:42 - 2015-03-06 19:43 - 00000000 ____D C:\Users\Springfieldz0r\AppData\Roaming\ViberPC 2015-10-12 12:08 - 2009-07-14 06:45 - 05080536 _____ C:\Windows\system32\FNTCACHE.DAT 2015-10-11 12:00 - 2012-10-09 21:09 - 00123176 _____ C:\Users\Springfieldz0r\AppData\Local\GDIPFONTCACHEV1.DAT 2015-10-11 11:23 - 2013-03-14 02:26 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2015-10-09 10:43 - 2015-04-04 16:23 - 00000000 ___SD C:\Windows\system32\GWX 2015-10-09 00:00 - 2015-04-04 16:23 - 00000000 ___SD C:\Windows\SysWOW64\GWX 2015-10-08 23:27 - 2012-10-14 07:47 - 00000000 ____D C:\ProgramData\Skype 2015-10-05 09:50 - 2015-07-01 16:39 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys 2015-10-05 09:50 - 2015-07-01 16:39 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2015-10-05 09:50 - 2015-07-01 16:39 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2015-10-02 22:47 - 2014-12-09 19:37 - 00000000 __SHD C:\Users\Springfieldz0r\AppData\LocalLow\EmieBrowserModeList 2015-10-02 22:47 - 2014-09-01 18:57 - 00000000 __SHD C:\Users\Springfieldz0r\AppData\LocalLow\EmieUserList 2015-10-02 22:47 - 2014-09-01 18:57 - 00000000 __SHD C:\Users\Springfieldz0r\AppData\LocalLow\EmieSiteList 2015-10-02 22:46 - 2014-12-09 19:37 - 00000000 __SHD C:\Users\Springfieldz0r\AppData\Local\EmieBrowserModeList 2015-10-02 22:46 - 2014-04-29 21:39 - 00000000 __SHD C:\Users\Springfieldz0r\AppData\Local\EmieUserList 2015-10-02 22:46 - 2014-04-29 21:39 - 00000000 __SHD C:\Users\Springfieldz0r\AppData\Local\EmieSiteList 2015-10-01 10:57 - 2014-08-07 18:23 - 00003844 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1382109612 2015-10-01 10:57 - 2013-02-12 15:30 - 00000000 ____D C:\Program Files (x86)\Opera 2015-09-29 16:49 - 2014-08-21 16:05 - 00000000 ____D C:\Users\Springfieldz0r\AppData\Local\Adobe 2015-09-25 16:28 - 2012-10-25 15:52 - 00000000 ____D C:\Program Files (x86)\Medjed-Skript v1.5 Black 2015-09-23 14:12 - 2012-11-04 18:09 - 00000000 ____D C:\Program Files (x86)\TeamViewer 2015-09-22 23:29 - 2013-03-04 14:05 - 00000000 ____D C:\Users\Springfieldz0r\AppData\Local\CrashDumps 2015-09-21 20:33 - 2012-10-09 20:30 - 00000000 ____D C:\Users\Springfieldz0r 2015-09-17 21:02 - 2013-02-28 16:22 - 00000000 ____D C:\Users\Springfieldz0r\Documents\KONAMI 2015-09-17 21:02 - 2012-10-19 21:03 - 00000000 ____D C:\ProgramData\KONAMI 2015-09-17 13:35 - 2015-01-30 20:14 - 00000000 ____D C:\Users\Springfieldz0r\AppData\Local\JDownloader v2.0 2015-09-17 13:30 - 2014-01-11 18:19 - 00003894 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2015-09-17 13:30 - 2014-01-11 18:19 - 00003642 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore ==================== Files in the root of some directories ======= 2014-07-28 14:53 - 2014-07-28 14:53 - 49940480 _____ () C:\Program Files (x86)\GUTEEB6.tmp 2014-04-21 20:06 - 2014-04-21 20:06 - 0000288 _____ () C:\Users\Springfieldz0r\AppData\Roaming\.backup.dm 2013-02-13 02:27 - 2014-05-31 16:11 - 0000132 _____ () C:\Users\Springfieldz0r\AppData\Roaming\Adobe BMP Format CS6 Prefs 2013-01-20 16:52 - 2013-12-07 05:19 - 0000132 _____ () C:\Users\Springfieldz0r\AppData\Roaming\Adobe GIF Format CS6 Prefs 2014-01-22 03:39 - 2014-01-22 03:39 - 0000132 _____ () C:\Users\Springfieldz0r\AppData\Roaming\Adobe IllExport Filter CS6 Prefs 2013-01-15 15:47 - 2015-10-14 20:22 - 0000132 _____ () C:\Users\Springfieldz0r\AppData\Roaming\Adobe PNG Format CS6 Prefs 2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\Springfieldz0r\AppData\Roaming\QfkxpKwSAgCiweduRiQ5 2012-11-06 19:34 - 2012-11-06 19:34 - 0045270 _____ () C:\Users\Springfieldz0r\AppData\Roaming\room_v3.dat 2015-04-14 18:28 - 2015-04-14 18:28 - 0004387 _____ () C:\Users\Springfieldz0r\AppData\Roaming\uNLPYpE2wFj7Yxy8lFALGeISQg1 2014-02-02 05:22 - 2014-02-12 01:22 - 0000079 _____ () C:\Users\Springfieldz0r\AppData\Roaming\WB.CFG 2012-10-10 19:33 - 2015-10-14 20:48 - 0000600 _____ () C:\Users\Springfieldz0r\AppData\Roaming\winscp.rnd 2013-02-14 17:26 - 2015-10-14 18:30 - 0001456 _____ () C:\Users\Springfieldz0r\AppData\Local\Adobe Save for Web 13.0 Prefs 2014-01-26 02:51 - 2014-01-26 02:51 - 0000001 _____ () C:\Users\Springfieldz0r\AppData\Local\llftool.4.25.agreement 2012-11-01 18:10 - 2014-03-06 05:07 - 0000600 _____ () C:\Users\Springfieldz0r\AppData\Local\PUTTY.RND 2013-03-08 00:33 - 2013-12-17 18:40 - 0007597 _____ () C:\Users\Springfieldz0r\AppData\Local\Resmon.ResmonCfg 2015-04-18 13:08 - 2015-04-18 13:08 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Some files in TEMP: ==================== C:\Users\Springfieldz0r\AppData\Local\Temp\amd-catalyst-omega-14.12-without-dotnet45-win7-64bit.exe C:\Users\Springfieldz0r\AppData\Local\Temp\AutoDetectUtilApp.exe C:\Users\Springfieldz0r\AppData\Local\Temp\AutoMapaPPCInterface.dll C:\Users\Springfieldz0r\AppData\Local\Temp\FreemakeVideoConverterFull.exe C:\Users\Springfieldz0r\AppData\Local\Temp\jre-8u60-windows-au.exe C:\Users\Springfieldz0r\AppData\Local\Temp\mirc743.exe C:\Users\Springfieldz0r\AppData\Local\Temp\miunst_.exe C:\Users\Springfieldz0r\AppData\Local\Temp\proxy_vole4531598929941409401.dll C:\Users\Springfieldz0r\AppData\Local\Temp\Quarantine.exe C:\Users\Springfieldz0r\AppData\Local\Temp\raptrpatch.exe C:\Users\Springfieldz0r\AppData\Local\Temp\raptr_stub.exe C:\Users\Springfieldz0r\AppData\Local\Temp\SkypeSetup.exe C:\Users\Springfieldz0r\AppData\Local\Temp\sqlite3.dll C:\Users\Springfieldz0r\AppData\Local\Temp\Uninstall.exe ==================== Bamital & volsnap ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed ATTENTION: ==> Could not access BCD. LastRegBack: 2015-10-11 21:36 ==================== End of FRST.txt ============================ https://www.mycity.rs/must-login.png https://www.mycity.rs/must-login.png

Profil

TwinHeadedEagle Poslao: 15 Okt 2015 14:30 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozdrav, 1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod: createrestorepoint: closeprocesses: emptytemp: Task: {32D14B6D-CDEE-4879-97E3-1B71B9FF47DB} - System32\Tasks\QfkxpKwSAgCiweduRiQ5 => C:\Users\Springfieldz0r\AppData\Roaming\QfkxpKwSAgCiweduRiQ5.exe <==== ATTENTION Task: {60ECCA12-4AA0-40CA-9B62-40B56283C6A8} - System32\Tasks\lenovo mobile auto run => C:\Program Files (x86)\MagicPlus\MagicPlus_helper.exe Task: {6EE52831-E5A7-4DAC-B248-C24DF4C48F07} - System32\Tasks\uNLPYpE2wFj7Yxy8lFALGeISQg1 => C:\Users\Springfieldz0r\AppData\Roaming\uNLPYpE2wFj7Yxy8lFALGeISQg1.exe <==== ATTENTION Task: C:\Windows\Tasks\QfkxpKwSAgCiweduRiQ5.job => C:\Users\Springfieldz0r\AppData\Roaming\QfkxpKwSAgCiweduRiQ5.exe <==== ATTENTION Task: C:\Windows\Tasks\uNLPYpE2wFj7Yxy8lFALGeISQg1.job => C:\Users\Springfieldz0r\AppData\Roaming\uNLPYpE2wFj7Yxy8lFALGeISQg1.exe <==== ATTENTION C:\Program Files (x86)\MagicPlus C:\Users\Springfieldz0r\AppData\Roaming\QfkxpKwSAgCiweduRiQ5.exe C:\Users\Springfieldz0r\AppData\Roaming\uNLPYpE2wFj7Yxy8lFALGeISQg1.exe AlternateDataStreams: C:\Windows:nlsPreferences AlternateDataStreams: C:\Windows:{4B9A1497-0817-47C4-9612-D6A1C53ACF57} AlternateDataStreams: C:\ProgramData\Microsoft:nlHp3CVMEyhrBLHX0InDVDVxnmFB AlternateDataStreams: C:\ProgramData\Microsoft:p0ybIg6dtpQUcFH3c8F AlternateDataStreams: C:\ProgramData\TEMP:07BB519E AlternateDataStreams: C:\ProgramData\TEMP:9E00596C AlternateDataStreams: C:\Users\Springfieldz0r\AppData\Local\Temp:1azqwr0vOVVRqFcN0WLBwgN2lk GroupPolicyScripts: Restriction <======= ATTENTION 2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\Springfieldz0r\AppData\Roaming\QfkxpKwSAgCiweduRiQ5 2012-11-06 19:34 - 2012-11-06 19:34 - 0045270 _____ () C:\Users\Springfieldz0r\AppData\Roaming\room_v3.dat 2015-04-14 18:28 - 2015-04-14 18:28 - 0004387 _____ () C:\Users\Springfieldz0r\AppData\Roaming\uNLPYpE2wFj7Yxy8lFALGeISQg1 2014-07-28 14:53 - 2014-07-28 14:53 - 49940480 _____ () C:\Program Files (x86)\GUTEEB6.tmp 2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi. 3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj. Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema. Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku. Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a.

Profil

Springfield Poslao: 15 Okt 2015 15:39 Idi na vrh
offline Springfield Moderator foruma 100%Milanista Information Technology Pridružio: 23 Avg 2008 Poruke: 2634 Gde živiš: Milan, Italy	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Fix result of Farbar Recovery Scan Tool (x64) Version:14-10-2015 01 Ran by Springfieldz0r (2015-10-15 15:07:47) Run:1 Running from C:\Users\Springfieldz0r\Desktop Loaded Profiles: Springfieldz0r (Available Profiles: Springfieldz0r) Boot Mode: Normal ============================================== fixlist content: *************** createrestorepoint: closeprocesses: emptytemp: Task: {32D14B6D-CDEE-4879-97E3-1B71B9FF47DB} - System32\Tasks\QfkxpKwSAgCiweduRiQ5 => C:\Users\Springfieldz0r\AppData\Roaming\QfkxpKwSAgCiweduRiQ5.exe <==== ATTENTION Task: {60ECCA12-4AA0-40CA-9B62-40B56283C6A8} - System32\Tasks\lenovo mobile auto run => C:\Program Files (x86)\MagicPlus\MagicPlus_helper.exe Task: {6EE52831-E5A7-4DAC-B248-C24DF4C48F07} - System32\Tasks\uNLPYpE2wFj7Yxy8lFALGeISQg1 => C:\Users\Springfieldz0r\AppData\Roaming\uNLPYpE2wFj7Yxy8lFALGeISQg1.exe <==== ATTENTION Task: C:\Windows\Tasks\QfkxpKwSAgCiweduRiQ5.job => C:\Users\Springfieldz0r\AppData\Roaming\QfkxpKwSAgCiweduRiQ5.exe <==== ATTENTION Task: C:\Windows\Tasks\uNLPYpE2wFj7Yxy8lFALGeISQg1.job => C:\Users\Springfieldz0r\AppData\Roaming\uNLPYpE2wFj7Yxy8lFALGeISQg1.exe <==== ATTENTION C:\Program Files (x86)\MagicPlus C:\Users\Springfieldz0r\AppData\Roaming\QfkxpKwSAgCiweduRiQ5.exe C:\Users\Springfieldz0r\AppData\Roaming\uNLPYpE2wFj7Yxy8lFALGeISQg1.exe AlternateDataStreams: C:\Windows:nlsPreferences AlternateDataStreams: C:\Windows:{4B9A1497-0817-47C4-9612-D6A1C53ACF57} AlternateDataStreams: C:\ProgramData\Microsoft:nlHp3CVMEyhrBLHX0InDVDVxnmFB AlternateDataStreams: C:\ProgramData\Microsoft:p0ybIg6dtpQUcFH3c8F AlternateDataStreams: C:\ProgramData\TEMP:07BB519E AlternateDataStreams: C:\ProgramData\TEMP:9E00596C AlternateDataStreams: C:\Users\Springfieldz0r\AppData\Local\Temp:1azqwr0vOVVRqFcN0WLBwgN2lk GroupPolicyScripts: Restriction <======= ATTENTION 2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\Springfieldz0r\AppData\Roaming\QfkxpKwSAgCiweduRiQ5 2012-11-06 19:34 - 2012-11-06 19:34 - 0045270 _____ () C:\Users\Springfieldz0r\AppData\Roaming\room_v3.dat 2015-04-14 18:28 - 2015-04-14 18:28 - 0004387 _____ () C:\Users\Springfieldz0r\AppData\Roaming\uNLPYpE2wFj7Yxy8lFALGeISQg1 2014-07-28 14:53 - 2014-07-28 14:53 - 49940480 _____ () C:\Program Files (x86)\GUTEEB6.tmp *************** Error: (0) Failed to create a restore point. Processes closed successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{32D14B6D-CDEE-4879-97E3-1B71B9FF47DB}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{32D14B6D-CDEE-4879-97E3-1B71B9FF47DB}" => key removed successfully C:\Windows\System32\Tasks\QfkxpKwSAgCiweduRiQ5 => moved successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\QfkxpKwSAgCiweduRiQ5" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{60ECCA12-4AA0-40CA-9B62-40B56283C6A8}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{60ECCA12-4AA0-40CA-9B62-40B56283C6A8}" => key removed successfully C:\Windows\System32\Tasks\lenovo mobile auto run => moved successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\lenovo mobile auto run" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{6EE52831-E5A7-4DAC-B248-C24DF4C48F07}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6EE52831-E5A7-4DAC-B248-C24DF4C48F07}" => key removed successfully C:\Windows\System32\Tasks\uNLPYpE2wFj7Yxy8lFALGeISQg1 => moved successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\uNLPYpE2wFj7Yxy8lFALGeISQg1" => key removed successfully C:\Windows\Tasks\QfkxpKwSAgCiweduRiQ5.job => moved successfully C:\Windows\Tasks\uNLPYpE2wFj7Yxy8lFALGeISQg1.job => moved successfully "C:\Program Files (x86)\MagicPlus" => File/Folder not found. "C:\Users\Springfieldz0r\AppData\Roaming\QfkxpKwSAgCiweduRiQ5.exe" => File/Folder not found. "C:\Users\Springfieldz0r\AppData\Roaming\uNLPYpE2wFj7Yxy8lFALGeISQg1.exe" => File/Folder not found. C:\Windows => ":nlsPreferences" ADS removed successfully. C:\Windows => ":{4B9A1497-0817-47C4-9612-D6A1C53ACF57}" ADS removed successfully. C:\ProgramData\Microsoft => ":nlHp3CVMEyhrBLHX0InDVDVxnmFB" ADS removed successfully. C:\ProgramData\Microsoft => ":p0ybIg6dtpQUcFH3c8F" ADS removed successfully. C:\ProgramData\TEMP => ":07BB519E" ADS removed successfully. C:\ProgramData\TEMP => ":9E00596C" ADS removed successfully. C:\Users\Springfieldz0r\AppData\Local\Temp => ":1azqwr0vOVVRqFcN0WLBwgN2lk" ADS removed successfully. C:\Windows\system32\GroupPolicy\Machine => moved successfully C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully C:\Windows\SysWOW64\GroupPolicy\GPT.ini => moved successfully C:\Users\Springfieldz0r\AppData\Roaming\QfkxpKwSAgCiweduRiQ5 => moved successfully C:\Users\Springfieldz0r\AppData\Roaming\room_v3.dat => moved successfully C:\Users\Springfieldz0r\AppData\Roaming\uNLPYpE2wFj7Yxy8lFALGeISQg1 => moved successfully C:\Program Files (x86)\GUTEEB6.tmp => moved successfully EmptyTemp: => 6.2 GB temporary data Removed. The system needed a reboot. ==== End of Fixlog 15:09:18 ====

Profil

TwinHeadedEagle Poslao: 16 Okt 2015 09:05 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Da li je sada sve u redu?

Profil

Springfield Poslao: 16 Okt 2015 09:09 Idi na vrh
offline Springfield Moderator foruma 100%Milanista Information Technology Pridružio: 23 Avg 2008 Poruke: 2634 Gde živiš: Milan, Italy	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Jeste, hvala.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Provera, ima nekog malware

Ko je trenutno na forumu

Ukupno su 1176 korisnika na forumu :: 30 registrovanih, 6 sakrivenih i 1140 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: A.R.Chafee.Jr., airsuba, Andrija357, Apok, bojank, bufanje, djboj, flash12, galerija, hatman, jackreacher011011, jaeger, Leonov, ljuba, Mcdado, mercedesamg, Mercury, Milos82, milutin134, Mlav, mnn2, MrNo, procesor, Sirius, StepskiVuk, TheBeastOfMG, vladaa012, zbazin, ZetaMan, |_MeD_|

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by