lol IMG_00234.zip

2

lol IMG_00234.zip

offline
  • Pridružio: 16 Mar 2014
  • Poruke: 11

Napisano: 16 Mar 2014 15:55

Postavio sam pitanje, nista nisam uradio sto nisi napisao. Nema razloga za agresivnim tonom.. Da sam pored tebe, i cusku bih dobio sam zato sto sam pitao.. Sad Evo uradjeno:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by NIKICA (administrator) on NIKICA-PC on 16-03-2014 15:45:53
Running from C:\Users\NIKICA\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(Check Point Software Technologies LTD) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
(Check Point Software Technologies) C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
(Check Point Software Technologies) C:\Program Files\CheckPoint\ZAForceField\ForceField.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Check Point Software Technologies LTD) C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(ACD Systems) F:\Program Files (x86)\ACD Systems\ACDSee Pro\7.0\acdIDInTouch2.exe
(Mozilla Corporation) F:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) F:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_70.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_70.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [ISW] - C:\Program Files\CheckPoint\ZAForceField\ForceField.exe [1127592 2012-11-22] (Check Point Software Technologies)
HKLM-x32\...\Run: [ZoneAlarm] - C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [73832 2013-01-29] (Check Point Software Technologies LTD)
HKLM-x32\...\Run: [AvastUI.exe] - "E:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [ACPW07EN] - F:\Program Files (x86)\ACD Systems\ACDSee Pro\7.0\acdIDInTouch2.exe [1414984 2013-09-25] (ACD Systems)
Winlogon\Notify\ScCertProp: wlnotify.dll [X]
HKU\S-1-5-21-1554415368-2939018819-765593907-1000\...\Run: [DAEMON Tools Lite] - F:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673728 2012-11-06] (DT Soft Ltd)
HKU\S-1-5-21-1554415368-2939018819-765593907-1000\...\Run: [AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA] - 1
HKU\S-1-5-21-1554415368-2939018819-765593907-1000\...\MountPoints2: {54e5124e-c82d-11e2-aeab-001a92cf99b5} - E:\LGAutoRun.exe
HKU\S-1-5-21-1554415368-2939018819-765593907-1000\...\MountPoints2: {8cbc29bc-a482-11e3-bfe8-001a92cf99b5} - E:\setup.exe
HKU\S-1-5-21-1554415368-2939018819-765593907-1000\...\MountPoints2: {f2d2a4f2-97c1-11e2-9d1b-001a92cf99b5} - N:\iLinker.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xF5BB0B00C7DECD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = sr-Latn-ME
SearchScopes: HKCU - {B716678C-489D-4DC8-88D6-BC991BAC8216} URL = search.yahoo.com/search?fr=chr-greentree_ie.....=302398&p={searchTerms}
BHO: No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
BHO: ZoneAlarm Security Engine Registrar - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: No Name - {53707962-6F74-2D53-2644-206D7942484F} - No File
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - F:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: ZoneAlarm Security Engine Registrar - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - ZoneAlarm Security Engine - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
Toolbar: HKLM-x32 - ZoneAlarm Security Engine - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU - ZoneAlarm Security Engine - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
DPF: HKLM-x32 {108D3206-846A-4A93-BACB-F0572D043ED7} agropromet.cpplusddns.com/webrec.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default
FF DefaultSearchEngine: Поиск@Mail.Ru
FF SelectedSearchEngine: Поиск@Mail.Ru
FF Homepage: about:home
FF Keyword.URL: hxxp://go.mail.ru/search?fr=fftb&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\searchplugins\cnet-downloads.xml
FF SearchPlugin: C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\searchplugins\filestube.xml
FF SearchPlugin: C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\searchplugins\google-images.xml
FF SearchPlugin: C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\searchplugins\googletranslate.xml
FF SearchPlugin: C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\searchplugins\imdb.xml
FF SearchPlugin: C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\searchplugins\kickassto.xml
FF SearchPlugin: C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\searchplugins\thepiratebayorg.xml
FF SearchPlugin: C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\searchplugins\torrent-freedom.xml
FF SearchPlugin: C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\searchplugins\torrent.xml
FF SearchPlugin: C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\searchplugins\torrents-search.xml
FF SearchPlugin: C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\searchplugins\torrentz.xml
FF SearchPlugin: C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\searchplugins\yahoo_ff.xml
FF SearchPlugin: C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\searchplugins\youtube.xml
FF Extension: WebRank SEO Toolbar - C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\Extensions\webrank-toolbar@probcomp.com [2013-12-02]
FF Extension: Site Launcher - C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\Extensions\{20291fcc-1471-46c8-8213-5911f5ce6d67} [2013-11-06]
FF Extension: ColorZilla - C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\Extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326} [2012-12-07]
FF Extension: Make Address Bar Font Size Bigger - C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\Extensions\addressBarFontSizeBigger@papafresh.com.xpi [2012-12-07]
FF Extension: FabTabs - C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\Extensions\fabtab@captaincaveman.nl.xpi [2012-12-07]
FF Extension: Open Bookmarks in New Tab - C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\Extensions\openbookmarkintab@piro.sakura.ne.jp.xpi [2012-12-07]
FF Extension: Open Link in New Tab - C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\Extensions\openlinkintab@piro.sakura.ne.jp.xpi [2012-12-07]
FF Extension: Tab Scope - C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\Extensions\tabscope@xuldev.org.xpi [2012-12-07]
FF Extension: Undo Closed Tabs Button - C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\Extensions\undoclosedtabsbutton@supernova00.biz.xpi [2012-12-07]
FF Extension: RSS Ticker - C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\Extensions\{1f91cde0-c040-11da-a94d-0800200c9a66}.xpi [2012-12-07]
FF Extension: X-notifier - C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\Extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [2012-12-07]
FF Extension: HeadlinesTicker - C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\Extensions\{64B67E1B-DD4B-4050-81EE-3BC7AEE6060E}.xpi [2012-12-08]
FF Extension: MeasureIt - C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\Extensions\{75CEEE46-9B64-46f8-94BF-54012DE155F0}.xpi [2012-12-07]
FF Extension: Search by Image for Google - C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\Extensions\{ab4b5718-3998-4a2c-91ae-18a7c2db513e}.xpi [2012-12-07]
FF Extension: Smartest Bookmarks Bar - C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\Extensions\{b442f4c0-c292-4998-aabe-48608a73ba75}.xpi [2012-12-08]
FF Extension: Shine Bright Skin Aero - C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\Extensions\{c7b3cf78-9cbc-47b9-ba47-bb84a56069dd}.xpi [2012-12-08]
FF Extension: Show my Password - C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\Extensions\{cd617372-6743-4ee4-bac4-fbf60f35719e}.xpi [2012-12-07]
FF Extension: Download Statusbar - C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\Extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}.xpi [2013-01-12]
FF HKLM\...\Firefox\Extensions: [{FFB96CC1-7EB3-449D-B827-DB661701C6BB}] - C:\Program Files\CheckPoint\ZAForceField\TrustChecker
FF Extension: No Name - C:\Program Files\CheckPoint\ZAForceField\TrustChecker [2013-02-26]
FF HKLM-x32\...\Firefox\Extensions: [{FFB96CC1-7EB3-449D-B827-DB661701C6BB}] - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker
FF Extension: ZoneAlarm Security Engine - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker [2013-02-26]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - F:\PROGRA~1\AVASTS~1\Avast\WebRep\FF
FF StartMenuInternet: FIREFOX.EXE - F:\Program Files (x86)\Mozilla Firefox\firefox.exe

Chrome:
=======
CHR Extension: (Google Drive) - C:\Users\NIKICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-12]
CHR Extension: (No Name) - C:\Users\NIKICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlpkojjdgbllmedoapgfodplfhcbnbpn [2014-02-16]
CHR Extension: (Google Wallet) - C:\Users\NIKICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-26]
CHR HKCU\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\NIKICA\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2014-02-09]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - F:\PROGRA~1\AVASTS~1\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-02-09]

==================== Services (Whitelisted) =================

R2 IswSvc; C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe [828072 2012-11-22] (Check Point Software Technologies)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-10-25] (IObit)
S3 Microsoft Office Groove Audit Service; F:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [64856 2009-02-26] (Microsoft Corporation)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [279848 2007-06-27] (Nero AG)
R2 vsmon; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [2447888 2013-01-29] (Check Point Software Technologies LTD)
S2 avast! Antivirus; "E:\Program Files\AVAST Software\Avast\AvastSvc.exe" [X]
S3 NBService; E:\Program Files\NERO\Nero 7\Nero BackItUp\NBService.exe [X]
S2 OS Selector; "E:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe" [X]
S2 SBSDWSCService; E:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [X]
S2 TeamViewer8; "e:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe" [X]
S3 wampapache; "e:\wamp\bin\apache\apache2.2.21\bin\httpd.exe" -k runservice [X]
S3 wampmysqld; e:\wamp\bin\mysql\mysql5.5.16\bin\mysqld.exe wampmysqld [X]

==================== Drivers (Whitelisted) ====================

S3 andnetadb; C:\Windows\System32\Drivers\lgandnetadb.sys [31744 2011-09-06] (Google Inc)
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [29184 2011-09-06] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [35840 2011-09-06] (LG Electronics Inc.)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-01-03] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-11-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-11-09] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1034464 2014-01-03] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [422216 2014-01-03] (AVAST Software)
S3 aswStm; C:\Windows\system32\drivers\aswStm.sys [79672 2014-01-03] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-01-03] ()
R3 AtcL001; C:\Windows\System32\DRIVERS\l160x64.sys [61440 2009-10-13] (Atheros Communications, Inc.)
S3 cxbu0x64; C:\Windows\System32\DRIVERS\cxbu0x64.sys [177920 2011-09-06] (HID Global Corporation)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2014-03-05] (DT Soft Ltd)
R2 ISWKL; C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys [33712 2012-11-22] (Check Point Software Technologies)
R3 LgBttPort; C:\Windows\System32\DRIVERS\lgbtpt64.sys [16384 2009-09-29] (LG Electronics Inc.)
R3 lgbusenum; C:\Windows\System32\DRIVERS\lgbtbs64.sys [14848 2009-09-29] (LG Electronics Inc.)
R3 LGVMODEM; C:\Windows\System32\DRIVERS\lgvmdm64.sys [17408 2009-09-29] (LG Electronics Inc.)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
R3 PAC207; C:\Windows\System32\DRIVERS\PFC027.SYS [677376 2007-06-29] (PixArt Imaging Inc.)
R1 Vsdatant; C:\Windows\System32\DRIVERS\vsdatant.sys [450136 2012-12-13] (Check Point Software Technologies LTD)
S3 Andbus; system32\DRIVERS\lgandbus64.sys [X]
S3 AndDiag; system32\DRIVERS\lganddiag64.sys [X]
S3 AndGps; system32\DRIVERS\lgandgps64.sys [X]
S3 ANDModem; system32\DRIVERS\lgandmodem64.sys [X]
S3 AndNetGps; system32\DRIVERS\lgandnetgps64.sys [X]
S3 andnetndis; system32\DRIVERS\lgandnetndis64.sys [X]
S3 androidusb; System32\Drivers\lgandadb.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-16 15:45 - 2014-03-16 15:46 - 00018480 _____ () C:\Users\NIKICA\Desktop\FRST.txt
2014-03-16 13:24 - 2014-03-16 13:25 - 00034363 _____ () C:\Users\NIKICA\Desktop\Addition1 (1).txt
2014-03-16 13:22 - 2014-03-16 15:45 - 00000000 ____D () C:\FRST
2014-03-16 13:22 - 2014-03-16 13:25 - 00071381 _____ () C:\Users\NIKICA\Desktop\Addition1 (2).txt
2014-03-16 13:21 - 2014-03-16 13:21 - 00004490 _____ () C:\Users\NIKICA\Desktop\AdwCleaner[S0].txt
2014-03-16 13:06 - 2014-03-16 13:06 - 02157056 _____ (Farbar) C:\Users\NIKICA\Desktop\FRST64.exe
2014-03-16 13:05 - 2014-03-16 13:15 - 00000000 ____D () C:\AdwCleaner
2014-03-16 13:04 - 2014-03-16 13:04 - 01950720 _____ () C:\Users\NIKICA\Desktop\AdwCleaner.exe
2014-03-16 13:03 - 2014-03-16 13:03 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled
2014-03-16 09:33 - 2014-03-16 09:33 - 00023496 _____ () C:\Users\NIKICA\Desktop\dds.txt
2014-03-16 09:33 - 2014-03-16 09:33 - 00009187 _____ () C:\Users\NIKICA\Desktop\attach.txt
2014-03-16 09:31 - 2014-03-16 09:31 - 00688992 ____R (Swearware) C:\Users\NIKICA\Desktop\dds.scr
2014-03-16 08:27 - 2014-03-16 08:53 - 00000000 ___SD () C:\32788R22FWJFW
2014-03-16 08:27 - 2014-03-16 08:27 - 00000000 ____D () C:\Windows\erdnt
2014-03-16 08:24 - 2014-03-16 08:24 - 05190279 ____R (Swearware) C:\Users\NIKICA\Desktop\ComboFix.exe
2014-03-16 07:56 - 2014-03-16 07:56 - 00000000 ____D () C:\Users\NIKICA\AppData\Roaming\Malwarebytes
2014-03-16 07:55 - 2014-03-16 07:55 - 00000799 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-03-16 07:55 - 2014-03-16 07:55 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-16 07:54 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-03-15 14:45 - 2014-03-15 14:49 - 00000923 _____ () C:\Users\NIKICA\Desktop\Windows Boot Genius.lnk
2014-03-15 14:45 - 2014-03-15 14:46 - 00000000 ____D () C:\Users\NIKICA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Boot Genius
2014-03-14 12:10 - 2014-03-14 12:11 - 00000000 ____D () C:\Users\NIKICA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WEB
2014-03-14 12:10 - 2014-03-14 12:11 - 00000000 ____D () C:\Users\NIKICA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GRAFIKA
2014-03-14 12:09 - 2014-03-16 13:11 - 00000000 ____D () C:\Users\NIKICA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BEZBEDNOST
2014-03-14 12:09 - 2014-03-14 12:09 - 00001591 _____ () C:\Users\NIKICA\Desktop\Programs - Shortcut.lnk
2014-03-14 11:29 - 2014-03-14 11:32 - 00000000 ____D () C:\Users\NIKICA\AppData\Roaming\Obnovi Soft
2014-03-14 11:28 - 2014-03-14 11:39 - 00000000 ____D () C:\Program Files (x86)\Obnovi Soft
2014-03-14 11:11 - 2014-03-14 11:14 - 00000000 ____D () C:\Users\NIKICA\AppData\Local\ACD Systems
2014-03-14 11:11 - 2014-03-14 11:11 - 00000000 ____D () C:\Users\NIKICA\AppData\Roaming\ACD Systems
2014-03-14 11:09 - 2014-03-14 11:09 - 00000000 ____D () C:\ProgramData\ACD Systems
2014-03-14 10:57 - 2014-03-14 10:58 - 00000000 ____D () C:\Users\NIKICA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-03-14 10:51 - 2014-03-14 10:51 - 00000000 ____D () C:\Users\NIKICA\AppData\Local\Downloaded Installations
2014-03-12 23:23 - 2014-03-12 23:23 - 00118048 _____ () C:\Users\NIKICA\AppData\Local\GDIPFONTCACHEV1.DAT
2014-03-12 23:15 - 2014-03-16 15:12 - 00001970 _____ () C:\Windows\setupact.log
2014-03-12 23:15 - 2014-03-12 23:16 - 04993104 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-12 23:15 - 2014-03-12 23:15 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-12 23:14 - 2014-03-16 15:12 - 00134850 _____ () C:\Windows\PFRO.log
2014-03-12 17:43 - 2014-03-01 07:05 - 23133696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-12 17:43 - 2014-03-01 06:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-12 17:43 - 2014-03-01 06:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-03-12 17:43 - 2014-03-01 05:58 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-12 17:43 - 2014-03-01 05:52 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-12 17:43 - 2014-03-01 05:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-03-12 17:43 - 2014-03-01 05:42 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-12 17:43 - 2014-03-01 05:40 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-12 17:43 - 2014-03-01 05:37 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-12 17:43 - 2014-03-01 05:33 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-12 17:43 - 2014-03-01 05:33 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-03-12 17:43 - 2014-03-01 05:32 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-03-12 17:43 - 2014-03-01 05:30 - 17074688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-03-12 17:43 - 2014-03-01 05:23 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-12 17:43 - 2014-03-01 05:17 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-12 17:43 - 2014-03-01 05:11 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-03-12 17:43 - 2014-03-01 05:02 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-12 17:43 - 2014-03-01 04:54 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-12 17:43 - 2014-03-01 04:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-03-12 17:43 - 2014-03-01 04:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-03-12 17:43 - 2014-03-01 04:47 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-03-12 17:43 - 2014-03-01 04:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-03-12 17:43 - 2014-03-01 04:43 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-03-12 17:43 - 2014-03-01 04:42 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-12 17:43 - 2014-03-01 04:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-03-12 17:43 - 2014-03-01 04:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-03-12 17:43 - 2014-03-01 04:37 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-03-12 17:43 - 2014-03-01 04:35 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-12 17:43 - 2014-03-01 04:18 - 13051904 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-12 17:43 - 2014-03-01 04:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-03-12 17:43 - 2014-03-01 04:14 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-03-12 17:43 - 2014-03-01 04:10 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-12 17:43 - 2014-03-01 04:03 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-03-12 17:43 - 2014-03-01 04:00 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-03-12 17:43 - 2014-03-01 03:57 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-03-12 17:43 - 2014-03-01 03:38 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-12 17:43 - 2014-03-01 03:32 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-03-12 17:43 - 2014-03-01 03:27 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-03-12 17:43 - 2014-03-01 03:25 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-03-12 17:43 - 2014-03-01 03:25 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-03-12 17:43 - 2014-02-07 02:23 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-12 17:43 - 2014-01-29 03:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-03-12 17:43 - 2014-01-29 03:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-03-12 17:43 - 2014-01-28 03:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-03-12 17:42 - 2014-02-04 03:32 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-03-12 17:42 - 2014-02-04 03:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-12 17:42 - 2014-02-04 03:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-03-12 17:42 - 2014-02-04 03:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-03-07 19:31 - 2014-03-10 20:26 - 00000000 ____D () C:\Users\NIKICA\AppData\Roaming\Winamp
2014-03-06 15:05 - 2014-03-06 15:05 - 00000000 ____D () C:\Users\Default\AppData\Roaming\TuneUp Software
2014-03-06 15:05 - 2014-03-06 15:05 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\TuneUp Software
2014-03-05 20:59 - 2014-03-05 20:59 - 00283200 _____ (DT Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-03-05 20:59 - 2014-03-05 20:59 - 00000866 _____ () C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2014-02-26 21:49 - 2014-02-26 21:49 - 00017295 _____ () C:\Users\NIKICA\Desktop\ExecutedServicePage.aspx.htm
2014-02-26 21:42 - 2014-02-26 21:42 - 00025306 _____ () C:\Users\NIKICA\Desktop\Портал еУправа Републике Србије - Детаљи захтева.htm
2014-02-26 21:38 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-02-26 21:37 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-02-26 21:37 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-02-26 21:37 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-02-26 21:34 - 2014-02-26 21:34 - 00000000 ____D () C:\Program Files (x86)\HID Global
2014-02-26 19:44 - 2014-02-26 19:44 - 00000000 ____D () C:\111
2014-02-26 19:41 - 2014-02-26 19:41 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WUDFUsbccidDriver_01_09_00.Wdf
2014-02-26 17:54 - 2014-01-09 03:22 - 05694464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-02-26 17:54 - 2014-01-03 23:44 - 06574592 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-02-23 02:07 - 2014-02-23 02:08 - 00000176 _____ () C:\Users\NIKICA\AppData\Roaming\settings.xml
2014-02-23 02:07 - 2014-02-23 02:07 - 00000000 ____D () C:\Users\NIKICA\AppData\Local\SkinSoft
2014-02-23 02:02 - 2014-02-23 02:02 - 00000000 ____D () C:\Users\NIKICA\AppData\Roaming\convertaudiofree
2014-02-23 02:01 - 2014-02-23 02:01 - 00000000 ____D () C:\Users\NIKICA\AppData\Local\cache
2014-02-23 02:01 - 2014-02-23 02:01 - 00000000 ____D () C:\Users\NIKICA\.android
2014-02-23 02:01 - 2014-02-23 02:01 - 00000000 _____ () C:\Users\NIKICA\daemonprocess.txt
2014-02-23 01:57 - 2014-02-23 10:23 - 00000000 ____D () C:\Users\NIKICA\AppData\Local\WMTools Downloaded Files
2014-02-23 01:55 - 2014-02-23 01:55 - 00000000 ____D () C:\Program Files (x86)\Movie Maker 2.6
2014-02-21 22:40 - 2014-02-21 22:40 - 00001175 _____ () C:\Users\Public\Desktop\Victoria II - A House Divided.lnk
2014-02-20 20:27 - 2014-03-16 08:58 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-20 20:27 - 2014-03-16 08:47 - 90015360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-20 20:19 - 2014-02-20 21:26 - 00765280 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-02-20 19:58 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-02-20 19:57 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-02-20 19:57 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-02-20 19:57 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-02-20 19:57 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-02-20 19:57 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-02-20 19:57 - 2013-10-02 02:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-02-20 19:57 - 2013-10-02 01:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-02-20 19:57 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-02-20 19:57 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-02-20 19:57 - 2013-10-02 01:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-02-20 19:57 - 2013-10-02 01:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-02-20 19:57 - 2013-10-02 00:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-02-20 19:57 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-02-20 19:57 - 2013-10-02 00:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-02-20 19:57 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-02-20 19:52 - 2014-03-12 23:14 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-02-20 19:52 - 2014-03-12 23:14 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-02-20 19:41 - 2013-09-25 03:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-02-20 19:41 - 2013-09-25 02:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-02-16 20:35 - 2014-02-16 20:35 - 00001174 _____ () C:\Users\NIKICA\Desktop\MK - Shortcut.lnk
2014-02-16 18:52 - 2014-02-16 18:52 - 00001090 _____ () C:\Users\Public\Desktop\Europa Universalis III.lnk

==================== One Month Modified Files and Folders =======

2014-03-16 15:46 - 2014-03-16 15:45 - 00018480 _____ () C:\Users\NIKICA\Desktop\FRST.txt
2014-03-16 15:45 - 2014-03-16 13:22 - 00000000 ____D () C:\FRST
2014-03-16 15:25 - 2012-12-07 10:23 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-16 15:18 - 2009-07-14 05:45 - 00010016 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-16 15:18 - 2009-07-14 05:45 - 00010016 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-16 15:17 - 2014-01-21 14:33 - 01077110 _____ () C:\Windows\WindowsUpdate.log
2014-03-16 15:17 - 2012-12-07 23:42 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-16 15:13 - 2012-12-07 23:42 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-16 15:13 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-16 15:12 - 2014-03-12 23:15 - 00001970 _____ () C:\Windows\setupact.log
2014-03-16 15:12 - 2014-03-12 23:14 - 00134850 _____ () C:\Windows\PFRO.log
2014-03-16 13:25 - 2014-03-16 13:24 - 00034363 _____ () C:\Users\NIKICA\Desktop\Addition1 (1).txt
2014-03-16 13:25 - 2014-03-16 13:22 - 00071381 _____ () C:\Users\NIKICA\Desktop\Addition1 (2).txt
2014-03-16 13:21 - 2014-03-16 13:21 - 00004490 _____ () C:\Users\NIKICA\Desktop\AdwCleaner[S0].txt
2014-03-16 13:17 - 2013-02-26 13:24 - 00000000 ____D () C:\Users\NIKICA\AppData\Roaming\CheckPoint
2014-03-16 13:15 - 2014-03-16 13:05 - 00000000 ____D () C:\AdwCleaner
2014-03-16 13:11 - 2014-03-14 12:09 - 00000000 ____D () C:\Users\NIKICA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BEZBEDNOST
2014-03-16 13:08 - 2013-02-21 20:34 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-03-16 13:06 - 2014-03-16 13:06 - 02157056 _____ (Farbar) C:\Users\NIKICA\Desktop\FRST64.exe
2014-03-16 13:04 - 2014-03-16 13:04 - 01950720 _____ () C:\Users\NIKICA\Desktop\AdwCleaner.exe
2014-03-16 13:03 - 2014-03-16 13:03 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled
2014-03-16 09:33 - 2014-03-16 09:33 - 00023496 _____ () C:\Users\NIKICA\Desktop\dds.txt
2014-03-16 09:33 - 2014-03-16 09:33 - 00009187 _____ () C:\Users\NIKICA\Desktop\attach.txt
2014-03-16 09:31 - 2014-03-16 09:31 - 00688992 ____R (Swearware) C:\Users\NIKICA\Desktop\dds.scr
2014-03-16 08:58 - 2014-02-20 20:27 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-16 08:53 - 2014-03-16 08:27 - 00000000 ___SD () C:\32788R22FWJFW
2014-03-16 08:51 - 2012-12-29 21:25 - 00000000 ____D () C:\Users\NIKICA\AppData\Roaming\uTorrent
2014-03-16 08:47 - 2014-02-20 20:27 - 90015360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-03-16 08:35 - 2013-12-01 14:18 - 00000000 ____D () C:\ProgramData\ProductData
2014-03-16 08:27 - 2014-03-16 08:27 - 00000000 ____D () C:\Windows\erdnt
2014-03-16 08:24 - 2014-03-16 08:24 - 05190279 ____R (Swearware) C:\Users\NIKICA\Desktop\ComboFix.exe
2014-03-16 07:56 - 2014-03-16 07:56 - 00000000 ____D () C:\Users\NIKICA\AppData\Roaming\Malwarebytes
2014-03-16 07:55 - 2014-03-16 07:55 - 00000799 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-03-16 07:55 - 2014-03-16 07:55 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-15 14:49 - 2014-03-15 14:45 - 00000923 _____ () C:\Users\NIKICA\Desktop\Windows Boot Genius.lnk
2014-03-15 14:46 - 2014-03-15 14:45 - 00000000 ____D () C:\Users\NIKICA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Boot Genius
2014-03-15 14:44 - 2009-07-14 06:13 - 00781298 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-14 12:11 - 2014-03-14 12:10 - 00000000 ____D () C:\Users\NIKICA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WEB
2014-03-14 12:11 - 2014-03-14 12:10 - 00000000 ____D () C:\Users\NIKICA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GRAFIKA
2014-03-14 12:09 - 2014-03-14 12:09 - 00001591 _____ () C:\Users\NIKICA\Desktop\Programs - Shortcut.lnk
2014-03-14 11:39 - 2014-03-14 11:28 - 00000000 ____D () C:\Program Files (x86)\Obnovi Soft
2014-03-14 11:32 - 2014-03-14 11:29 - 00000000 ____D () C:\Users\NIKICA\AppData\Roaming\Obnovi Soft
2014-03-14 11:14 - 2014-03-14 11:11 - 00000000 ____D () C:\Users\NIKICA\AppData\Local\ACD Systems
2014-03-14 11:11 - 2014-03-14 11:11 - 00000000 ____D () C:\Users\NIKICA\AppData\Roaming\ACD Systems
2014-03-14 11:09 - 2014-03-14 11:09 - 00000000 ____D () C:\ProgramData\ACD Systems
2014-03-14 10:58 - 2014-03-14 10:57 - 00000000 ____D () C:\Users\NIKICA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-03-14 10:51 - 2014-03-14 10:51 - 00000000 ____D () C:\Users\NIKICA\AppData\Local\Downloaded Installations
2014-03-12 23:23 - 2014-03-12 23:23 - 00118048 _____ () C:\Users\NIKICA\AppData\Local\GDIPFONTCACHEV1.DAT
2014-03-12 23:16 - 2014-03-12 23:15 - 04993104 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-12 23:15 - 2014-03-12 23:15 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-12 23:14 - 2014-02-20 19:52 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-03-12 23:14 - 2014-02-20 19:52 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-03-12 23:10 - 2012-12-07 10:34 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-03-11 19:13 - 2014-01-23 12:54 - 00000000 ____D () C:\Users\NIKICA\Desktop\JA
2014-03-10 22:45 - 2012-12-17 21:52 - 00000000 ____D () C:\Users\NIKICA\AppData\Roaming\DAEMON Tools Lite
2014-03-10 20:26 - 2014-03-07 19:31 - 00000000 ____D () C:\Users\NIKICA\AppData\Roaming\Winamp
2014-03-09 12:15 - 2013-06-29 12:01 - 00000000 ___RD () C:\Users\NIKICA\Google диск
2014-03-06 15:05 - 2014-03-06 15:05 - 00000000 ____D () C:\Users\Default\AppData\Roaming\TuneUp Software
2014-03-06 15:05 - 2014-03-06 15:05 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\TuneUp Software
2014-03-05 21:43 - 2013-01-31 15:50 - 00000000 ____D () C:\Users\NIKICA\Documents\Paradox Interactive
2014-03-05 21:38 - 2013-05-30 21:03 - 00000011 _____ () C:\Users\NIKICA\AppData\Roaming\DPQuickNotes.txt
2014-03-05 20:59 - 2014-03-05 20:59 - 00283200 _____ (DT Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-03-05 20:59 - 2014-03-05 20:59 - 00000866 _____ () C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2014-03-02 23:31 - 2014-01-23 12:55 - 00000000 ____D () C:\Users\NIKICA\Desktop\BRIGADA
2014-03-01 07:05 - 2014-03-12 17:43 - 23133696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-01 06:17 - 2014-03-12 17:43 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-01 06:16 - 2014-03-12 17:43 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-03-01 05:58 - 2014-03-12 17:43 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-01 05:52 - 2014-03-12 17:43 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-01 05:51 - 2014-03-12 17:43 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-03-01 05:42 - 2014-03-12 17:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-01 05:40 - 2014-03-12 17:43 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-01 05:37 - 2014-03-12 17:43 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-01 05:33 - 2014-03-12 17:43 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-01 05:33 - 2014-03-12 17:43 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-03-01 05:32 - 2014-03-12 17:43 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-03-01 05:30 - 2014-03-12 17:43 - 17074688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-03-01 05:23 - 2014-03-12 17:43 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-01 05:17 - 2014-03-12 17:43 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-01 05:11 - 2014-03-12 17:43 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-03-01 05:02 - 2014-03-12 17:43 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-01 04:54 - 2014-03-12 17:43 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-01 04:52 - 2014-03-12 17:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-03-01 04:51 - 2014-03-12 17:43 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-03-01 04:47 - 2014-03-12 17:43 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-03-01 04:43 - 2014-03-12 17:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-03-01 04:43 - 2014-03-12 17:43 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-03-01 04:42 - 2014-03-12 17:43 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-01 04:40 - 2014-03-12 17:43 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-03-01 04:38 - 2014-03-12 17:43 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-03-01 04:37 - 2014-03-12 17:43 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-03-01 04:35 - 2014-03-12 17:43 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-01 04:18 - 2014-03-12 17:43 - 13051904 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-01 04:16 - 2014-03-12 17:43 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-03-01 04:14 - 2014-03-12 17:43 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-03-01 04:10 - 2014-03-12 17:43 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-01 04:03 - 2014-03-12 17:43 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-03-01 04:00 - 2014-03-12 17:43 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-03-01 03:57 - 2014-03-12 17:43 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-03-01 03:38 - 2014-03-12 17:43 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-01 03:32 - 2014-03-12 17:43 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-03-01 03:27 - 2014-03-12 17:43 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-03-01 03:25 - 2014-03-12 17:43 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-03-01 03:25 - 2014-03-12 17:43 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-26 23:54 - 2014-02-13 04:15 - 00000000 ____D () C:\Windows\rescache
2014-02-26 21:49 - 2014-02-26 21:49 - 00017295 _____ () C:\Users\NIKICA\Desktop\ExecutedServicePage.aspx.htm
2014-02-26 21:42 - 2014-02-26 21:42 - 00025306 _____ () C:\Users\NIKICA\Desktop\Портал еУправа Републике Србије - Детаљи захтева.htm
2014-02-26 21:39 - 2013-09-15 14:50 - 00000000 ____D () C:\ProgramData\Oracle
2014-02-26 21:37 - 2013-12-12 17:37 - 00000000 ____D () C:\Program Files (x86)\Java
2014-02-26 21:34 - 2014-02-26 21:34 - 00000000 ____D () C:\Program Files (x86)\HID Global
2014-02-26 19:44 - 2014-02-26 19:44 - 00000000 ____D () C:\111
2014-02-26 19:41 - 2014-02-26 19:41 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WUDFUsbccidDriver_01_09_00.Wdf
2014-02-26 17:44 - 2012-12-07 10:23 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-26 17:44 - 2012-12-07 10:23 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-26 17:44 - 2012-12-07 10:23 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-25 22:48 - 2013-12-21 18:11 - 00012799 _____ () C:\Users\NIKICA\Desktop\New Microsoft Office Excel Worksheet.xlsx
2014-02-23 10:23 - 2014-02-23 01:57 - 00000000 ____D () C:\Users\NIKICA\AppData\Local\WMTools Downloaded Files
2014-02-23 10:07 - 2013-06-10 17:23 - 00003584 _____ () C:\Users\NIKICA\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-02-23 02:08 - 2014-02-23 02:07 - 00000176 _____ () C:\Users\NIKICA\AppData\Roaming\settings.xml
2014-02-23 02:07 - 2014-02-23 02:07 - 00000000 ____D () C:\Users\NIKICA\AppData\Local\SkinSoft
2014-02-23 02:06 - 2012-12-07 23:37 - 00000000 ___RD () C:\Users\NIKICA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-23 02:02 - 2014-02-23 02:02 - 00000000 ____D () C:\Users\NIKICA\AppData\Roaming\convertaudiofree
2014-02-23 02:01 - 2014-02-23 02:01 - 00000000 ____D () C:\Users\NIKICA\AppData\Local\cache
2014-02-23 02:01 - 2014-02-23 02:01 - 00000000 ____D () C:\Users\NIKICA\.android
2014-02-23 02:01 - 2014-02-23 02:01 - 00000000 _____ () C:\Users\NIKICA\daemonprocess.txt
2014-02-23 02:01 - 2012-12-07 23:37 - 00000000 ____D () C:\Users\NIKICA
2014-02-23 01:55 - 2014-02-23 01:55 - 00000000 ____D () C:\Program Files (x86)\Movie Maker 2.6
2014-02-21 22:40 - 2014-02-21 22:40 - 00001175 _____ () C:\Users\Public\Desktop\Victoria II - A House Divided.lnk
2014-02-21 12:28 - 2009-07-14 03:34 - 00000752 _____ () C:\Windows\win.ini
2014-02-20 23:58 - 2014-02-08 11:48 - 00000000 ____D () C:\Program Files (x86)\Microsoft Works
2014-02-20 21:26 - 2014-02-20 20:19 - 00765280 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-02-20 20:40 - 2013-10-05 12:00 - 00000000 ____D () C:\Users\NIKICA\AppData\Local\Microsoft Games
2014-02-20 19:51 - 2013-02-27 21:00 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-02-20 19:51 - 2012-12-08 00:34 - 00000000 ____D () C:\ProgramData\Skype
2014-02-16 20:35 - 2014-02-16 20:35 - 00001174 _____ () C:\Users\NIKICA\Desktop\MK - Shortcut.lnk
2014-02-16 18:52 - 2014-02-16 18:52 - 00001090 _____ () C:\Users\Public\Desktop\Europa Universalis III.lnk
2014-02-16 18:50 - 2012-12-07 23:46 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-02-16 18:35 - 2012-12-17 09:49 - 00000000 ____D () C:\Users\NIKICA\AppData\Local\Stardock
2014-02-15 16:31 - 2014-01-30 19:52 - 00000000 ____D () C:\Users\NIKICA\Documents\MK-LOL
2014-02-15 12:39 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-02-15 12:12 - 2012-12-07 23:42 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-15 12:12 - 2012-12-07 23:42 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-15 12:10 - 2012-12-08 00:34 - 00000000 ____D () C:\Users\NIKICA\AppData\Roaming\Skype

Some content of TEMP:
====================
C:\Users\NIKICA\AppData\Local\Temp\avgnt.exe
C:\Users\NIKICA\AppData\Local\Temp\CgFMsWsuGEDiprPKcohS.DLL
C:\Users\NIKICA\AppData\Local\Temp\driver_booster_setup.exe
C:\Users\NIKICA\AppData\Local\Temp\libcurl-4.dll
C:\Users\NIKICA\AppData\Local\Temp\mailruhomesearch.exe
C:\Users\NIKICA\AppData\Local\Temp\obnovisetup_iobit.exe
C:\Users\NIKICA\AppData\Local\Temp\ObnoviSoft.exe
C:\Users\NIKICA\AppData\Local\Temp\promote-upx.exe
C:\Users\NIKICA\AppData\Local\Temp\pthreadGC2.dll
C:\Users\NIKICA\AppData\Local\Temp\Quarantine.exe
C:\Users\NIKICA\AppData\Local\Temp\zlib1.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-03-10 00:40

==================== End Of Log ============================


mycity.rs/must-login.png

Dopuna: 16 Mar 2014 15:57

(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe Zasto se ovo nije sklinulo kad sam ga deinstalirao ?

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10455
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Ne brini se, ne bi dobio ćušku zato što si pitao, a ja još nisam postao agresivan. Razz



Arrow Korak 1

Otvori Notepad i iskopiraj sljedeći tekst koji se nalazi unutar Kod polja.

HKU\S-1-5-21-1554415368-2939018819-765593907-1000\...\Run: [AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA] - 1
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-10-25] (IObit)
FF SearchPlugin: C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\searchplugins\cnet-downloads.xml
FF SearchPlugin: C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\searchplugins\filestube.xml
Task: {46A2B83F-F3EB-4C50-9F08-0E9DA751BFF4} - \GoforFilesUpdate No Task File
Task: {7703723C-C457-4492-BD00-C52C6549A649} - System32\Tasks\Driver Booster Scan => e:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe
Task: {78939975-F2AA-4EE9-8BEC-361A1F5B6AF1} - \Driver Booster Update No Task File


U okviru Notepad-a klikni na File --> Save As
Fajl nazovi Fixlist i sačuvaj na Desktop
Dvoklikom ponovo pokreni FRST.exe
Klikni na Fix i sačekaj dok program ne završi.
Ukoliko program zatraži restart računara, omogući mu da to nesmetano obavi.
Nakon završetka rada, otvoriće se Notepad, sa sadržajem koji treba da kopiraš u temu.
Takođe, na Desktop-u će se nalaziti (fixlog.txt). Potrebno je da sadržaj fixlog.txt kopiraš na forum





Question

Da li si pokrenuo sadržaj ZIP fajla na XP ili na 7?

offline
  • Pridružio: 16 Mar 2014
  • Poruke: 11

sve vreme radim u 7.. podpitanje ( bez cekiranja ovah md5 i ostalih munja... sve je odcekirano... samo klinkme fix ? )

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10455
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

DA, samo klini na Fix ako si napravio fixlists.txt onako kako sam ti rekao.

offline
  • Pridružio: 16 Mar 2014
  • Poruke: 11

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 13-03-2014
Ran by NIKICA at 2014-03-16 16:19:05 Run:1
Running from C:\Users\NIKICA\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
HKU\S-1-5-21-1554415368-2939018819-765593907-1000\...\Run: [AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA] - 1
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-10-25] (IObit)
FF SearchPlugin: C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\searchplugins\cnet-downloads.xml
FF SearchPlugin: C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\searchplugins\filestube.xml
Task: {46A2B83F-F3EB-4C50-9F08-0E9DA751BFF4} - \GoforFilesUpdate No Task File
Task: {7703723C-C457-4492-BD00-C52C6549A649} - System32\Tasks\Driver Booster Scan => e:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe
Task: {78939975-F2AA-4EE9-8BEC-361A1F5B6AF1} - \Driver Booster Update No Task File
*****************

HKU\S-1-5-21-1554415368-2939018819-765593907-1000\Software\Microsoft\Windows\CurrentVersion\Run\\AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => Value deleted successfully.
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => Key not found.
LiveUpdateSvc => Service stopped successfully.
LiveUpdateSvc => Service deleted successfully.
C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\searchplugins\cnet-downloads.xml => Moved successfully.
C:\Users\NIKICA\AppData\Roaming\Mozilla\Firefox\Profiles\ond4zb69.default\searchplugins\filestube.xml => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{46A2B83F-F3EB-4C50-9F08-0E9DA751BFF4} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{46A2B83F-F3EB-4C50-9F08-0E9DA751BFF4} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoforFilesUpdate => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7703723C-C457-4492-BD00-C52C6549A649} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7703723C-C457-4492-BD00-C52C6549A649} => Key deleted successfully.
C:\Windows\System32\Tasks\Driver Booster Scan => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Scan => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{78939975-F2AA-4EE9-8BEC-361A1F5B6AF1} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{78939975-F2AA-4EE9-8BEC-361A1F5B6AF1} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Update => Key deleted successfully.

==== End of Fixlog ====

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10455
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Preuzmite program GMER sa donjeg linka na Desktop:


GMER download
Kliknite dati link;
Kada se otvori dijalog za izbor lokacije na kojoj treba sačuvati file, odaberite Desktop i kliknite Save.



Dvoklikom pokrenite GMER.
Sačekajte da se završi uvodno skeniranje - ukoliko se pojavi bilo kakav upit, kliknite No;

kliknite Scan i sačekajte da skeniranje bude završeno;

kliknite Save ... - izveštaj sačuvajte na Desktop (pod nazivom Gmer1);

kliknite desnim tasterom u prozor programa Gmer i odaberite Options > 3rd party - kliknite Scan;

po završetku skeniranja kliknite Save ... - izveštaj sačuvajte na Desktop (pod nazivom Gmer2);

kliknite taster >>> i odaberite Autostart karticu;

po završetku kratkotrajnog skeniranja, kliknite Copy;

otvorite Notepad i u njega postavite kopirani tekst - izveštaj sačuvajte na Desktop (pod nazivom Gmer3);


Slikoviti prikaz postupka

Priložite sva tri izveštaja uz poruku korišćenjem opcije Prikači fajl.

offline
  • Pridružio: 16 Mar 2014
  • Poruke: 11

mycity.rs/must-login.png

mycity.rs/must-login.png

mycity.rs/must-login.png

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10455
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Logovi sada izgledaju čisto pa mi reci kakvo je sada stanje i da li i dalje tvoji FB priajtelji dobijaju taj ZIP fajl od tebe.

offline
  • Pridružio: 16 Mar 2014
  • Poruke: 11

stanje je sledece> nemam nijedan antivirus ( bar nije ukljucen ), w7 (solve PC issues) mi prijavljuje da je windows defender iskljucen.. Mislim da ne primaju ali nisam siguran da li to zavisi mozda od njihovog online statusa.. Kko njima da pomognem ( garantovano 30-tak ljudi je kliknulo na ovo kao i ja svojevremeno pre nego sto sam uopste i video i okacio upozorenje na timeline ! )

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10455
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Instaliraj neki AV i promijeni lozinku na svom FB nalogu. Ukoliko neko opet primi od tebe taj ZIP fajl, javi (javi i ako niko ne primi). Najlakše ti je da vidiš kome si slao sve poruke na FB jer bi tu trebalo ostati zabilježeno ako si išta nekome slao.

Ko je trenutno na forumu
 

Ukupno su 593 korisnika na forumu :: 46 registrovanih, 7 sakrivenih i 540 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 2413 - dana 03 Okt 2019 05:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: A.R.Chafee.Jr., BlaCkMilK, bojan313, bulovic, dejanbenkovic, dejoglina, Djokislav, docadoca, doklevise, Dorcolac2, Dovla, duskovuk63, Filodendron, hatman, hyla, indja2, ivance95, Kruger2, Kubovac, Lieutenant, liman, ljs, Luznicanin, MikeHammer, miodrag, Mixelotti, Nesho2, Panonsky, Pijemont, plavii, Recce, repac, rkekoke, shaja1, sosko, stemark, stojbre, Toni, VES 11119, vladetije, vlvl, vobo, voja64, wulfy, zgoljo, zlatkoa987