MyCity » Ambulanta -> Arhiva Ambulante » problem sa firefoxom

problem sa firefoxom

Napisano na dan: 1.2.2014

Strana:
1
2
3

problem sa firefoxom

Pagination

Prethodna strana

Sledeća strana

Pagination

Odgovori

Strana:
1
2
3

kalikali Poslao: 02 Feb 2014 16:26 Idi na vrh
offline kalikali Novi MyCity građanin Pridružio: 12 Jan 2012 Poruke: 17	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! TwinHeadedEagle ::Kakvo je sada stanje, ima li poboljsanja? reakao bih da ima,imam utisak da brze radi nadam se da je to to,ako bude jos problema cimam te hvala ti za vreme koje si izdvojio da mi pomognes

Profil

TwinHeadedEagle Poslao: 02 Feb 2014 16:31 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Nismo zavrsili kompletno, imamo da obavimo jos par rutinskih provera... Preuzmi Farbar-ov Farbar Recovery Scan Tool () sa ove adrese na Desktop: Postoji 32bit. i 64bit.-na verzija. Potrebno je preuzeti verziju koja je kompatibilna sa tvojim sistemom. Ako nisi siguran koja verzija se odnosi na tvoj sistem, preuzmi ih obe i pokreni. Samo jedan od njih c´e raditi na tvom sistemu, to c´e biti prava verzija. dvoklikom pokreni program, kada se alat pokrene klikni Yes na disclaimer prozor; pričekati koji trenutak dok alat proverava postoji li novija verzija; klikni na dugme Scan; po završetku skeniranja, alat će formirati izveštaj (FRST.txt) u isti direktorijum gde je FRST alat sačuvan; iskopiraj sadržaj FRST.txt izveštaja u poruku; po prvom pokretanju, alat bi trebao formirati i dodatni izveštaj (Addition.txt); okači Addition.txt izveštaj uz poruku koristeći opciju Prikači fajl Zatim Preuzmi aswMBR i sacuvaj ga na Desktop. Dvoklikom pokreni aswMBR. Ukoliko dobijes sledecu poruku: Would you like to download latest Avast! virus definitions? Klikni na dugme Yes i pricekaj da se proces preuzimanja definicija zavrsi. Proveri da je pod AV Scan: izabrana opcija QuickScan Klikni na Scan. Kada zavrsi skeniranje ( Scan finished successfully ) klikni Save log. Sacuvaj aswMBR log na Desktop. Sadrzaj tog loga iskopiraj u temi.

Profil

kalikali Poslao: 02 Feb 2014 16:59 Idi na vrh
offline kalikali Novi MyCity građanin Pridružio: 12 Jan 2012 Poruke: 17	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 02 Feb 2014 16:44 Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-02-2014 04 Ran by KaliKali (administrator) on KALIKALI-PC on 02-02-2014 16:36:05 Running from C:\Users\KaliKali\Desktop Windows 7 Ultimate Service Pack 1 (X64) OS Language: English(US) Internet Explorer Version 11 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe (AMD) C:\Windows\System32\atiesrxx.exe (Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe (AMD) C:\Windows\System32\atieclxx.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2013\bdparentalservice.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender Safebox\safeboxservice.exe (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2013\bdagent.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe () C:\Program Files (x86)\HTC Home\Clock.exe (BitTorrent Inc.) C:\Program Files (x86)\uTorrent\utorrent.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2013\bdparentalsystray.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6839952 2012-09-13] (Realtek Semiconductor) HKLM\...\Run: [Bdagent] - C:\Program Files\Bitdefender\Bitdefender 2013\bdagent.exe [1571072 2014-01-19] (Bitdefender) HKLM-x32\...\Run: [IMSS] - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134176 2012-10-22] (Intel Corporation) HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642808 2012-12-19] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation) HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKU\S-1-5-21-79928162-2191768633-3156743557-1000\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3674320 2013-01-08] (DT Soft Ltd) HKU\S-1-5-21-79928162-2191768633-3156743557-1000\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20588704 2013-11-15] (Skype Technologies S.A.) HKU\S-1-5-21-79928162-2191768633-3156743557-1000\...\Run: [Clock Widget (HTC Home)] - C:\Program Files (x86)\HTC Home\Clock.exe [2036736 2011-11-28] () HKU\S-1-5-21-79928162-2191768633-3156743557-1000\...\Run: [uTorrent] - C:\Program Files (x86)\uTorrent\utorrent.exe [802136 2013-05-02] (BitTorrent Inc.) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = msn.com/?ocid=iehp HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x7AF0618C0039CE01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = sr-rs HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage} SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage} BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Winsock: Catalog9 01 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 02 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 03 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 04 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 05 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 06 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 07 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 08 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 09 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 10 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 21 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9-x64 01 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 02 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 03 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 04 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 05 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 06 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 07 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 08 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 09 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 10 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 21 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Tcpip\Parameters: [DhcpNameServer] 89.216.1.30 89.216.1.50 FireFox: ======== FF ProfilePath: C:\Users\KaliKali\AppData\Roaming\Mozilla\Firefox\Profiles\kf9kxjv0.default-1391261196523 FF Homepage: hxxp://www.sbb.rs/SBB/1/Naslovna+strana.shtml FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll () FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @verimatrix.com/ViewRightWeb - C:\Program Files (x86)\Verimatrix\ViewRight Web\\npViewRight.dll (Verimatrix, Inc.) FF Plugin HKCU: @eximion.com/KalydoPlayer - C:\Users\KaliKali\AppData\Roaming\Kalydo\KalydoPlayer\bin2\npkalydo.dll (Eximion B.V.) FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\KaliKali\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF Plugin HKCU: @verimatrix.com/ViewRightWeb - C:\Program Files (x86)\Verimatrix\ViewRight Web\\npViewRight.dll (Verimatrix, Inc.) FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF Extension: Burek.com - C:\Users\KaliKali\AppData\Roaming\Mozilla\Firefox\Profiles\kf9kxjv0.default-1391261196523\Extensions\{2dc11ee0-b147-44b3-b6cb-4b773ec94b5b} [2014-02-02] FF Extension: Downloads Window - C:\Users\KaliKali\AppData\Roaming\Mozilla\Firefox\Profiles\kf9kxjv0.default-1391261196523\Extensions\{a7213cf2-fa1e-4373-88ff-255d0abd3020}.xpi [2014-02-01] FF Extension: Adblock Plus - C:\Users\KaliKali\AppData\Roaming\Mozilla\Firefox\Profiles\kf9kxjv0.default-1391261196523\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-02-01] FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2013\bdtbext FF Extension: bdToolbar - C:\Program Files\Bitdefender\Bitdefender 2013\bdtbext [2014-01-19] FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2013\bdtbext FF Extension: bdToolbar - C:\Program Files\Bitdefender\Bitdefender 2013\bdtbext [2014-01-19] Chrome: ======= CHR HomePage: hxxp://www.google.com/ CHR RestoreOnStartup: "hxxp://www.google.com/" CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll No File CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll No File CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\pdf.dll No File CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) CHR Plugin: (Foxit Reader Plugin for Mozilla) - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation) CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File CHR Plugin: (Unity Player) - C:\Users\KaliKali\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) CHR Plugin: (Kalydo Player Plugin for Mozilla) - C:\Users\KaliKali\AppData\Roaming\Kalydo\KalydoPlayer\bin2\npkalydo.dll (Eximion B.V.) CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll No File CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll No File CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\Windows\SysWOW64\npDeployJava1.dll No File CHR Extension: (YouTube) - C:\Users\KaliKali\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-07-21] CHR Extension: (Google Search) - C:\Users\KaliKali\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-07-21] CHR Extension: (Google Wallet) - C:\Users\KaliKali\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-14] CHR Extension: (Gmail) - C:\Users\KaliKali\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-07-21] ==================== Services (Whitelisted) ================= R2 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2013\bdparentalservice.exe [69392 2014-01-19] (Bitdefender) R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [149032 2012-08-16] () R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166432 2012-10-22] (Intel Corporation) R2 SafeBox; C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [95184 2014-01-19] (Bitdefender) R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe [67320 2014-01-19] (Bitdefender) R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe [1645256 2014-01-19] (Bitdefender) ==================== Drivers (Whitelisted) ==================== R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [893440 2014-01-19] (BitDefender) R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [261056 2014-01-19] (BitDefender) R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [635392 2014-01-19] (BitDefender) R1 BdfNdisf; c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [93600 2014-01-19] (BitDefender LLC) R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [103504 2011-11-14] (BitDefender LLC) S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2014-01-19] (BitDefender SRL) R1 BDVEDISK; C:\Windows\System32\DRIVERS\bdvedisk.sys [76944 2012-04-17] (BitDefender) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-09-06] (DT Soft Ltd) R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2014-01-19] (BitDefender LLC) R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [20968 2012-08-16] () R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [19944 2012-08-16] () R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [46016 2012-08-16] () R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2013-04-14] (Duplex Secure Ltd.) R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [389240 2014-01-19] (BitDefender S.R.L.) R3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2014-02-02] () U3 avf91di0; C:\Windows\System32\Drivers\avf91di0.sys [0 ] (Microsoft Corporation) S3 MSICDSetup; \??\E:\CDriver64.sys [x] S3 NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys [x] S3 VGPU; System32\drivers\rdvgkmd.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-02-02 16:36 - 2014-02-02 16:36 - 00018306 _____ () C:\Users\KaliKali\Desktop\FRST.txt 2014-02-02 16:36 - 2014-02-02 16:36 - 00000000 ____D () C:\FRST 2014-02-02 16:35 - 2014-02-02 16:35 - 02080256 _____ (Farbar) C:\Users\KaliKali\Desktop\FRST64.exe 2014-02-02 16:28 - 2014-02-02 16:28 - 00657776 _____ (Conduit) C:\Users\KaliKali\Desktop\tb_Burek.com.exe 2014-02-02 16:17 - 2013-10-18 01:11 - 00024064 _____ () C:\Windows\zoek-delete.exe 2014-02-02 16:04 - 2014-02-02 15:39 - 00019403 _____ () C:\zoek-results2014-02-02-143953.log 2014-02-02 15:38 - 2014-02-02 15:27 - 00001100 _____ () C:\zoek-results2014-02-02-142756.log 2014-02-02 15:27 - 2014-02-02 16:18 - 00031476 _____ () C:\zoek-results.log 2014-02-02 15:25 - 2014-02-02 16:16 - 00000000 ____D () C:\zoek_backup 2014-02-02 13:21 - 2014-02-02 16:18 - 00094656 _____ (CACE Technologies) C:\Windows\system32\WPRO_41_2001woem.tmp 2014-02-02 13:21 - 2014-02-02 16:18 - 00003800 _____ () C:\Windows\PFRO.log 2014-02-02 13:21 - 2014-02-02 16:18 - 00000112 _____ () C:\Windows\setupact.log 2014-02-02 13:21 - 2014-02-02 13:21 - 00000000 _____ () C:\Windows\setuperr.log 2014-02-01 15:11 - 2014-02-01 15:11 - 00000000 ____D () C:\Users\KaliKali\Doctor Web 2014-02-01 15:11 - 2014-02-01 15:11 - 00000000 ____D () C:\ProgramData\Doctor Web 2014-02-01 14:19 - 2014-02-01 14:26 - 00000000 ____D () C:\Users\KaliKali\Desktop\Old Firefox Data 2014-01-31 08:00 - 2014-01-31 08:00 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2014-01-21 08:18 - 2014-01-21 08:18 - 00005175 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log 2014-01-19 12:39 - 2014-01-19 12:41 - 00893440 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys 2014-01-19 12:39 - 2014-01-19 12:41 - 00635392 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys 2014-01-19 12:39 - 2014-01-19 12:41 - 00082824 _____ (BitDefender SRL) C:\Windows\system32\Drivers\bdsandbox.sys 2014-01-19 12:39 - 2014-01-19 12:40 - 00000000 ____D () C:\Users\KaliKali\AppData\Roaming\Bitdefender 2014-01-19 12:39 - 2014-01-19 12:39 - 00362928 _____ () C:\ProgramData\1390131529.bdinstall.bin 2014-01-19 12:39 - 2014-01-19 12:39 - 00253404 ____H () C:\bdr-ld12 2014-01-19 12:39 - 2014-01-19 12:39 - 00009216 ____H () C:\bdr-ld12.mbr 2014-01-19 12:39 - 2014-01-19 12:39 - 00002241 _____ () C:\Users\Public\Desktop\Bitdefender Safepay.lnk 2014-01-19 12:39 - 2014-01-19 12:39 - 00002122 _____ () C:\Users\Public\Desktop\Bitdefender Total Security 2013.lnk 2014-01-19 12:39 - 2014-01-19 12:39 - 00000874 ____H () C:\bdr-cf12 2014-01-19 12:39 - 2014-01-19 12:39 - 00000385 _____ () C:\Windows\system32\user_gensett.xml 2014-01-19 12:39 - 2014-01-19 12:39 - 00000000 ____D () C:\ProgramData\Bitdefender 2014-01-19 12:39 - 2012-07-11 19:59 - 37161560 ____H () C:\bdr-im12.gz 2014-01-19 12:39 - 2012-05-24 13:39 - 02510608 ____H () C:\bdr-bz12 2014-01-19 12:39 - 2012-04-17 14:34 - 00076944 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys 2014-01-19 12:39 - 2011-11-14 20:16 - 00090192 _____ (BitDefender LLC) C:\Windows\system32\Drivers\BdfNdisf6.sys 2014-01-19 12:38 - 2014-01-19 13:15 - 00150256 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys 2014-01-19 12:38 - 2014-01-19 12:41 - 00389240 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys 2014-01-19 12:38 - 2014-01-19 12:39 - 00000000 ____D () C:\Program Files\Bitdefender 2014-01-19 12:38 - 2014-01-19 12:38 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender 2014-01-15 21:13 - 2014-02-02 16:18 - 00000000 ____D () C:\Program Files (x86)\HTC Home 2014-01-15 21:13 - 2014-01-15 21:13 - 00000000 ____D () C:\Users\KaliKali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HTC Home 2014-01-15 17:25 - 2014-01-15 17:25 - 00163376 _____ () C:\Users\KaliKali\Desktop\htchome_setup.exe 2014-01-15 09:26 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2014-01-15 09:26 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2014-01-15 09:26 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys 2014-01-15 09:26 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2014-01-15 09:26 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys 2014-01-15 09:26 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys 2014-01-15 09:26 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys 2014-01-15 09:26 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2014-01-15 09:26 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-01-14 21:13 - 2014-01-26 11:22 - 00000000 ____D () C:\Users\KaliKali\Desktop\klizanje 2014 ==================== One Month Modified Files and Folders ======= 2014-02-02 16:36 - 2014-02-02 16:36 - 00018306 _____ () C:\Users\KaliKali\Desktop\FRST.txt 2014-02-02 16:36 - 2014-02-02 16:36 - 00000000 ____D () C:\FRST 2014-02-02 16:35 - 2014-02-02 16:35 - 02080256 _____ (Farbar) C:\Users\KaliKali\Desktop\FRST64.exe 2014-02-02 16:34 - 2013-04-14 13:07 - 00000000 ____D () C:\Users\KaliKali\AppData\Roaming\uTorrent 2014-02-02 16:28 - 2014-02-02 16:28 - 00657776 _____ (Conduit) C:\Users\KaliKali\Desktop\tb_Burek.com.exe 2014-02-02 16:28 - 2013-04-14 16:07 - 00000000 ____D () C:\Users\KaliKali\AppData\Roaming\Skype 2014-02-02 16:26 - 2013-04-14 11:12 - 01398703 _____ () C:\Windows\WindowsUpdate.log 2014-02-02 16:25 - 2009-07-14 05:45 - 00026544 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-02-02 16:25 - 2009-07-14 05:45 - 00026544 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-02-02 16:24 - 2013-09-13 07:22 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-02-02 16:22 - 2009-07-14 06:13 - 00782922 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-02-02 16:18 - 2014-02-02 15:27 - 00031476 _____ () C:\zoek-results.log 2014-02-02 16:18 - 2014-02-02 13:21 - 00094656 _____ (CACE Technologies) C:\Windows\system32\WPRO_41_2001woem.tmp 2014-02-02 16:18 - 2014-02-02 13:21 - 00003800 _____ () C:\Windows\PFRO.log 2014-02-02 16:18 - 2014-02-02 13:21 - 00000112 _____ () C:\Windows\setupact.log 2014-02-02 16:18 - 2014-01-15 21:13 - 00000000 ____D () C:\Program Files (x86)\HTC Home 2014-02-02 16:18 - 2013-05-14 22:24 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-02-02 16:18 - 2013-04-14 11:22 - 00034752 _____ () C:\Windows\system32\Drivers\WPRO_41_2001.sys 2014-02-02 16:18 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-02-02 16:16 - 2014-02-02 15:25 - 00000000 ____D () C:\zoek_backup 2014-02-02 15:39 - 2014-02-02 16:04 - 00019403 _____ () C:\zoek-results2014-02-02-143953.log 2014-02-02 15:27 - 2014-02-02 15:38 - 00001100 _____ () C:\zoek-results2014-02-02-142756.log 2014-02-02 14:58 - 2013-05-14 22:24 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-02-02 13:21 - 2014-02-02 13:21 - 00000000 _____ () C:\Windows\setuperr.log 2014-02-02 13:16 - 2013-11-22 16:52 - 00000000 ____D () C:\Windows\Minidump 2014-02-02 13:16 - 2013-06-10 17:56 - 00000000 ____D () C:\Users\KaliKali\AppData\Local\CrashDumps 2014-02-02 13:16 - 2013-04-14 13:25 - 00000000 ____D () C:\Users\KaliKali\AppData\Roaming\AIMP3 2014-02-02 09:29 - 2013-10-05 15:03 - 00000000 ____D () C:\Users\KaliKali\AppData\Local\PMB Files 2014-02-02 09:28 - 2013-10-05 15:03 - 00000000 ____D () C:\ProgramData\PMB Files 2014-02-02 07:56 - 2013-12-22 20:39 - 00000000 ____D () C:\Windows\system32\log 2014-02-01 15:56 - 2013-12-12 07:43 - 00000000 ____D () C:\Users\KaliKali\Desktop\darko 1 2014-02-01 15:11 - 2014-02-01 15:11 - 00000000 ____D () C:\Users\KaliKali\Doctor Web 2014-02-01 15:11 - 2014-02-01 15:11 - 00000000 ____D () C:\ProgramData\Doctor Web 2014-02-01 15:11 - 2013-04-14 11:12 - 00000000 ____D () C:\Users\KaliKali 2014-02-01 14:49 - 2013-04-14 15:05 - 00000000 ____D () C:\Users\KaliKali\Desktop\SPOTOVI 2014-02-01 14:26 - 2014-02-01 14:19 - 00000000 ____D () C:\Users\KaliKali\Desktop\Old Firefox Data 2014-01-31 08:00 - 2014-01-31 08:00 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2014-01-31 07:56 - 2013-08-05 18:20 - 00000000 ____D () C:\Users\KaliKali\AppData\Local\Adobe 2014-01-31 07:56 - 2013-04-14 13:16 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-01-31 07:56 - 2013-04-14 13:16 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-01-31 07:56 - 2013-04-14 13:16 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2014-01-30 18:46 - 2013-09-20 18:14 - 00000000 ____D () C:\Users\KaliKali\AppData\Roaming\.minecraft 2014-01-26 11:22 - 2014-01-14 21:13 - 00000000 ____D () C:\Users\KaliKali\Desktop\klizanje 2014 2014-01-26 11:19 - 2013-04-14 15:01 - 00000000 ____D () C:\Users\KaliKali\Desktop\SLIKE 2014-01-21 08:18 - 2014-01-21 08:18 - 00005175 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log 2014-01-21 08:18 - 2013-10-18 17:25 - 00000000 ____D () C:\ProgramData\Oracle 2014-01-21 08:18 - 2013-06-24 11:36 - 00000000 ____D () C:\Program Files (x86)\Java 2014-01-19 15:34 - 2013-04-14 14:16 - 00000000 ____D () C:\Users\KaliKali\Documents\Outlook Files 2014-01-19 13:15 - 2014-01-19 12:38 - 00150256 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys 2014-01-19 12:44 - 2013-04-14 16:23 - 00000376 _____ () C:\Users\KaliKali\AppData\Roamingprivacy.xml 2014-01-19 12:41 - 2014-01-19 12:39 - 00893440 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys 2014-01-19 12:41 - 2014-01-19 12:39 - 00635392 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys 2014-01-19 12:41 - 2014-01-19 12:39 - 00082824 _____ (BitDefender SRL) C:\Windows\system32\Drivers\bdsandbox.sys 2014-01-19 12:41 - 2014-01-19 12:38 - 00389240 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys 2014-01-19 12:41 - 2013-04-14 16:22 - 00261056 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys 2014-01-19 12:40 - 2014-01-19 12:39 - 00000000 ____D () C:\Users\KaliKali\AppData\Roaming\Bitdefender 2014-01-19 12:39 - 2014-01-19 12:39 - 00362928 _____ () C:\ProgramData\1390131529.bdinstall.bin 2014-01-19 12:39 - 2014-01-19 12:39 - 00253404 ____H () C:\bdr-ld12 2014-01-19 12:39 - 2014-01-19 12:39 - 00009216 ____H () C:\bdr-ld12.mbr 2014-01-19 12:39 - 2014-01-19 12:39 - 00002241 _____ () C:\Users\Public\Desktop\Bitdefender Safepay.lnk 2014-01-19 12:39 - 2014-01-19 12:39 - 00002122 _____ () C:\Users\Public\Desktop\Bitdefender Total Security 2013.lnk 2014-01-19 12:39 - 2014-01-19 12:39 - 00000874 ____H () C:\bdr-cf12 2014-01-19 12:39 - 2014-01-19 12:39 - 00000385 _____ () C:\Windows\system32\user_gensett.xml 2014-01-19 12:39 - 2014-01-19 12:39 - 00000000 ____D () C:\ProgramData\Bitdefender 2014-01-19 12:39 - 2014-01-19 12:38 - 00000000 ____D () C:\Program Files\Bitdefender 2014-01-19 12:38 - 2014-01-19 12:38 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender 2014-01-15 21:13 - 2014-01-15 21:13 - 00000000 ____D () C:\Users\KaliKali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HTC Home 2014-01-15 17:25 - 2014-01-15 17:25 - 00163376 _____ () C:\Users\KaliKali\Desktop\htchome_setup.exe 2014-01-15 14:04 - 2013-08-01 22:42 - 00000000 ____D () C:\Windows\system32\MRT 2014-01-15 13:54 - 2009-07-14 05:45 - 00416712 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-01-12 13:06 - 2009-07-14 06:08 - 00032614 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2014-01-06 16:20 - 2013-04-14 12:17 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-01-04 22:50 - 2013-08-17 15:08 - 00264192 ___SH () C:\Users\KaliKali\Desktop\Thumbs.db ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2014-01-29 18:41 ==================== End Of Log ============================ mycity.rs/must-login.png Dopuna: 02 Feb 2014 16:45 kalikali ::Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-02-2014 04 Ran by KaliKali (administrator) on KALIKALI-PC on 02-02-2014 16:36:05 Running from C:\Users\KaliKali\Desktop Windows 7 Ultimate Service Pack 1 (X64) OS Language: English(US) Internet Explorer Version 11 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe (AMD) C:\Windows\System32\atiesrxx.exe (Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe (AMD) C:\Windows\System32\atieclxx.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2013\bdparentalservice.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender Safebox\safeboxservice.exe (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2013\bdagent.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe () C:\Program Files (x86)\HTC Home\Clock.exe (BitTorrent Inc.) C:\Program Files (x86)\uTorrent\utorrent.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2013\bdparentalsystray.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6839952 2012-09-13] (Realtek Semiconductor) HKLM\...\Run: [Bdagent] - C:\Program Files\Bitdefender\Bitdefender 2013\bdagent.exe [1571072 2014-01-19] (Bitdefender) HKLM-x32\...\Run: [IMSS] - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134176 2012-10-22] (Intel Corporation) HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642808 2012-12-19] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation) HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKU\S-1-5-21-79928162-2191768633-3156743557-1000\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3674320 2013-01-08] (DT Soft Ltd) HKU\S-1-5-21-79928162-2191768633-3156743557-1000\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20588704 2013-11-15] (Skype Technologies S.A.) HKU\S-1-5-21-79928162-2191768633-3156743557-1000\...\Run: [Clock Widget (HTC Home)] - C:\Program Files (x86)\HTC Home\Clock.exe [2036736 2011-11-28] () HKU\S-1-5-21-79928162-2191768633-3156743557-1000\...\Run: [uTorrent] - C:\Program Files (x86)\uTorrent\utorrent.exe [802136 2013-05-02] (BitTorrent Inc.) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = msn.com/?ocid=iehp HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x7AF0618C0039CE01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = sr-rs HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage} SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage} BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Winsock: Catalog9 01 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 02 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 03 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 04 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 05 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 06 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 07 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 08 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 09 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 10 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 21 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9-x64 01 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 02 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 03 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 04 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 05 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 06 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 07 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 08 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 09 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 10 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 21 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Tcpip\Parameters: [DhcpNameServer] 89.216.1.30 89.216.1.50 FireFox: ======== FF ProfilePath: C:\Users\KaliKali\AppData\Roaming\Mozilla\Firefox\Profiles\kf9kxjv0.default-1391261196523 FF Homepage: hxxp://www.sbb.rs/SBB/1/Naslovna+strana.shtml FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll () FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @verimatrix.com/ViewRightWeb - C:\Program Files (x86)\Verimatrix\ViewRight Web\\npViewRight.dll (Verimatrix, Inc.) FF Plugin HKCU: @eximion.com/KalydoPlayer - C:\Users\KaliKali\AppData\Roaming\Kalydo\KalydoPlayer\bin2\npkalydo.dll (Eximion B.V.) FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\KaliKali\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF Plugin HKCU: @verimatrix.com/ViewRightWeb - C:\Program Files (x86)\Verimatrix\ViewRight Web\\npViewRight.dll (Verimatrix, Inc.) FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF Extension: Burek.com - C:\Users\KaliKali\AppData\Roaming\Mozilla\Firefox\Profiles\kf9kxjv0.default-1391261196523\Extensions\{2dc11ee0-b147-44b3-b6cb-4b773ec94b5b} [2014-02-02] FF Extension: Downloads Window - C:\Users\KaliKali\AppData\Roaming\Mozilla\Firefox\Profiles\kf9kxjv0.default-1391261196523\Extensions\{a7213cf2-fa1e-4373-88ff-255d0abd3020}.xpi [2014-02-01] FF Extension: Adblock Plus - C:\Users\KaliKali\AppData\Roaming\Mozilla\Firefox\Profiles\kf9kxjv0.default-1391261196523\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-02-01] FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2013\bdtbext FF Extension: bdToolbar - C:\Program Files\Bitdefender\Bitdefender 2013\bdtbext [2014-01-19] FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2013\bdtbext FF Extension: bdToolbar - C:\Program Files\Bitdefender\Bitdefender 2013\bdtbext [2014-01-19] Chrome: ======= CHR HomePage: hxxp://www.google.com/ CHR RestoreOnStartup: "hxxp://www.google.com/" CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll No File CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll No File CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\pdf.dll No File CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) CHR Plugin: (Foxit Reader Plugin for Mozilla) - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation) CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File CHR Plugin: (Unity Player) - C:\Users\KaliKali\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) CHR Plugin: (Kalydo Player Plugin for Mozilla) - C:\Users\KaliKali\AppData\Roaming\Kalydo\KalydoPlayer\bin2\npkalydo.dll (Eximion B.V.) CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll No File CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll No File CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\Windows\SysWOW64\npDeployJava1.dll No File CHR Extension: (YouTube) - C:\Users\KaliKali\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-07-21] CHR Extension: (Google Search) - C:\Users\KaliKali\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-07-21] CHR Extension: (Google Wallet) - C:\Users\KaliKali\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-14] CHR Extension: (Gmail) - C:\Users\KaliKali\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-07-21] ==================== Services (Whitelisted) ================= R2 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2013\bdparentalservice.exe [69392 2014-01-19] (Bitdefender) R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [149032 2012-08-16] () R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166432 2012-10-22] (Intel Corporation) R2 SafeBox; C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [95184 2014-01-19] (Bitdefender) R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe [67320 2014-01-19] (Bitdefender) R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe [1645256 2014-01-19] (Bitdefender) ==================== Drivers (Whitelisted) ==================== R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [893440 2014-01-19] (BitDefender) R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [261056 2014-01-19] (BitDefender) R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [635392 2014-01-19] (BitDefender) R1 BdfNdisf; c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [93600 2014-01-19] (BitDefender LLC) R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [103504 2011-11-14] (BitDefender LLC) S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2014-01-19] (BitDefender SRL) R1 BDVEDISK; C:\Windows\System32\DRIVERS\bdvedisk.sys [76944 2012-04-17] (BitDefender) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-09-06] (DT Soft Ltd) R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2014-01-19] (BitDefender LLC) R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [20968 2012-08-16] () R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [19944 2012-08-16] () R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [46016 2012-08-16] () R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2013-04-14] (Duplex Secure Ltd.) R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [389240 2014-01-19] (BitDefender S.R.L.) R3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2014-02-02] () U3 avf91di0; C:\Windows\System32\Drivers\avf91di0.sys [0 ] (Microsoft Corporation) S3 MSICDSetup; \??\E:\CDriver64.sys [x] S3 NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys [x] S3 VGPU; System32\drivers\rdvgkmd.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-02-02 16:36 - 2014-02-02 16:36 - 00018306 _____ () C:\Users\KaliKali\Desktop\FRST.txt 2014-02-02 16:36 - 2014-02-02 16:36 - 00000000 ____D () C:\FRST 2014-02-02 16:35 - 2014-02-02 16:35 - 02080256 _____ (Farbar) C:\Users\KaliKali\Desktop\FRST64.exe 2014-02-02 16:28 - 2014-02-02 16:28 - 00657776 _____ (Conduit) C:\Users\KaliKali\Desktop\tb_Burek.com.exe 2014-02-02 16:17 - 2013-10-18 01:11 - 00024064 _____ () C:\Windows\zoek-delete.exe 2014-02-02 16:04 - 2014-02-02 15:39 - 00019403 _____ () C:\zoek-results2014-02-02-143953.log 2014-02-02 15:38 - 2014-02-02 15:27 - 00001100 _____ () C:\zoek-results2014-02-02-142756.log 2014-02-02 15:27 - 2014-02-02 16:18 - 00031476 _____ () C:\zoek-results.log 2014-02-02 15:25 - 2014-02-02 16:16 - 00000000 ____D () C:\zoek_backup 2014-02-02 13:21 - 2014-02-02 16:18 - 00094656 _____ (CACE Technologies) C:\Windows\system32\WPRO_41_2001woem.tmp 2014-02-02 13:21 - 2014-02-02 16:18 - 00003800 _____ () C:\Windows\PFRO.log 2014-02-02 13:21 - 2014-02-02 16:18 - 00000112 _____ () C:\Windows\setupact.log 2014-02-02 13:21 - 2014-02-02 13:21 - 00000000 _____ () C:\Windows\setuperr.log 2014-02-01 15:11 - 2014-02-01 15:11 - 00000000 ____D () C:\Users\KaliKali\Doctor Web 2014-02-01 15:11 - 2014-02-01 15:11 - 00000000 ____D () C:\ProgramData\Doctor Web 2014-02-01 14:19 - 2014-02-01 14:26 - 00000000 ____D () C:\Users\KaliKali\Desktop\Old Firefox Data 2014-01-31 08:00 - 2014-01-31 08:00 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2014-01-21 08:18 - 2014-01-21 08:18 - 00005175 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log 2014-01-19 12:39 - 2014-01-19 12:41 - 00893440 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys 2014-01-19 12:39 - 2014-01-19 12:41 - 00635392 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys 2014-01-19 12:39 - 2014-01-19 12:41 - 00082824 _____ (BitDefender SRL) C:\Windows\system32\Drivers\bdsandbox.sys 2014-01-19 12:39 - 2014-01-19 12:40 - 00000000 ____D () C:\Users\KaliKali\AppData\Roaming\Bitdefender 2014-01-19 12:39 - 2014-01-19 12:39 - 00362928 _____ () C:\ProgramData\1390131529.bdinstall.bin 2014-01-19 12:39 - 2014-01-19 12:39 - 00253404 ____H () C:\bdr-ld12 2014-01-19 12:39 - 2014-01-19 12:39 - 00009216 ____H () C:\bdr-ld12.mbr 2014-01-19 12:39 - 2014-01-19 12:39 - 00002241 _____ () C:\Users\Public\Desktop\Bitdefender Safepay.lnk 2014-01-19 12:39 - 2014-01-19 12:39 - 00002122 _____ () C:\Users\Public\Desktop\Bitdefender Total Security 2013.lnk 2014-01-19 12:39 - 2014-01-19 12:39 - 00000874 ____H () C:\bdr-cf12 2014-01-19 12:39 - 2014-01-19 12:39 - 00000385 _____ () C:\Windows\system32\user_gensett.xml 2014-01-19 12:39 - 2014-01-19 12:39 - 00000000 ____D () C:\ProgramData\Bitdefender 2014-01-19 12:39 - 2012-07-11 19:59 - 37161560 ____H () C:\bdr-im12.gz 2014-01-19 12:39 - 2012-05-24 13:39 - 02510608 ____H () C:\bdr-bz12 2014-01-19 12:39 - 2012-04-17 14:34 - 00076944 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys 2014-01-19 12:39 - 2011-11-14 20:16 - 00090192 _____ (BitDefender LLC) C:\Windows\system32\Drivers\BdfNdisf6.sys 2014-01-19 12:38 - 2014-01-19 13:15 - 00150256 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys 2014-01-19 12:38 - 2014-01-19 12:41 - 00389240 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys 2014-01-19 12:38 - 2014-01-19 12:39 - 00000000 ____D () C:\Program Files\Bitdefender 2014-01-19 12:38 - 2014-01-19 12:38 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender 2014-01-15 21:13 - 2014-02-02 16:18 - 00000000 ____D () C:\Program Files (x86)\HTC Home 2014-01-15 21:13 - 2014-01-15 21:13 - 00000000 ____D () C:\Users\KaliKali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HTC Home 2014-01-15 17:25 - 2014-01-15 17:25 - 00163376 _____ () C:\Users\KaliKali\Desktop\htchome_setup.exe 2014-01-15 09:26 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2014-01-15 09:26 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2014-01-15 09:26 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys 2014-01-15 09:26 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2014-01-15 09:26 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys 2014-01-15 09:26 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys 2014-01-15 09:26 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys 2014-01-15 09:26 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2014-01-15 09:26 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-01-14 21:13 - 2014-01-26 11:22 - 00000000 ____D () C:\Users\KaliKali\Desktop\klizanje 2014 ==================== One Month Modified Files and Folders ======= 2014-02-02 16:36 - 2014-02-02 16:36 - 00018306 _____ () C:\Users\KaliKali\Desktop\FRST.txt 2014-02-02 16:36 - 2014-02-02 16:36 - 00000000 ____D () C:\FRST 2014-02-02 16:35 - 2014-02-02 16:35 - 02080256 _____ (Farbar) C:\Users\KaliKali\Desktop\FRST64.exe 2014-02-02 16:34 - 2013-04-14 13:07 - 00000000 ____D () C:\Users\KaliKali\AppData\Roaming\uTorrent 2014-02-02 16:28 - 2014-02-02 16:28 - 00657776 _____ (Conduit) C:\Users\KaliKali\Desktop\tb_Burek.com.exe 2014-02-02 16:28 - 2013-04-14 16:07 - 00000000 ____D () C:\Users\KaliKali\AppData\Roaming\Skype 2014-02-02 16:26 - 2013-04-14 11:12 - 01398703 _____ () C:\Windows\WindowsUpdate.log 2014-02-02 16:25 - 2009-07-14 05:45 - 00026544 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-02-02 16:25 - 2009-07-14 05:45 - 00026544 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-02-02 16:24 - 2013-09-13 07:22 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-02-02 16:22 - 2009-07-14 06:13 - 00782922 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-02-02 16:18 - 2014-02-02 15:27 - 00031476 _____ () C:\zoek-results.log 2014-02-02 16:18 - 2014-02-02 13:21 - 00094656 _____ (CACE Technologies) C:\Windows\system32\WPRO_41_2001woem.tmp 2014-02-02 16:18 - 2014-02-02 13:21 - 00003800 _____ () C:\Windows\PFRO.log 2014-02-02 16:18 - 2014-02-02 13:21 - 00000112 _____ () C:\Windows\setupact.log 2014-02-02 16:18 - 2014-01-15 21:13 - 00000000 ____D () C:\Program Files (x86)\HTC Home 2014-02-02 16:18 - 2013-05-14 22:24 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-02-02 16:18 - 2013-04-14 11:22 - 00034752 _____ () C:\Windows\system32\Drivers\WPRO_41_2001.sys 2014-02-02 16:18 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-02-02 16:16 - 2014-02-02 15:25 - 00000000 ____D () C:\zoek_backup 2014-02-02 15:39 - 2014-02-02 16:04 - 00019403 _____ () C:\zoek-results2014-02-02-143953.log 2014-02-02 15:27 - 2014-02-02 15:38 - 00001100 _____ () C:\zoek-results2014-02-02-142756.log 2014-02-02 14:58 - 2013-05-14 22:24 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-02-02 13:21 - 2014-02-02 13:21 - 00000000 _____ () C:\Windows\setuperr.log 2014-02-02 13:16 - 2013-11-22 16:52 - 00000000 ____D () C:\Windows\Minidump 2014-02-02 13:16 - 2013-06-10 17:56 - 00000000 ____D () C:\Users\KaliKali\AppData\Local\CrashDumps 2014-02-02 13:16 - 2013-04-14 13:25 - 00000000 ____D () C:\Users\KaliKali\AppData\Roaming\AIMP3 2014-02-02 09:29 - 2013-10-05 15:03 - 00000000 ____D () C:\Users\KaliKali\AppData\Local\PMB Files 2014-02-02 09:28 - 2013-10-05 15:03 - 00000000 ____D () C:\ProgramData\PMB Files 2014-02-02 07:56 - 2013-12-22 20:39 - 00000000 ____D () C:\Windows\system32\log 2014-02-01 15:56 - 2013-12-12 07:43 - 00000000 ____D () C:\Users\KaliKali\Desktop\darko 1 2014-02-01 15:11 - 2014-02-01 15:11 - 00000000 ____D () C:\Users\KaliKali\Doctor Web 2014-02-01 15:11 - 2014-02-01 15:11 - 00000000 ____D () C:\ProgramData\Doctor Web 2014-02-01 15:11 - 2013-04-14 11:12 - 00000000 ____D () C:\Users\KaliKali 2014-02-01 14:49 - 2013-04-14 15:05 - 00000000 ____D () C:\Users\KaliKali\Desktop\SPOTOVI 2014-02-01 14:26 - 2014-02-01 14:19 - 00000000 ____D () C:\Users\KaliKali\Desktop\Old Firefox Data 2014-01-31 08:00 - 2014-01-31 08:00 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2014-01-31 07:56 - 2013-08-05 18:20 - 00000000 ____D () C:\Users\KaliKali\AppData\Local\Adobe 2014-01-31 07:56 - 2013-04-14 13:16 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-01-31 07:56 - 2013-04-14 13:16 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-01-31 07:56 - 2013-04-14 13:16 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2014-01-30 18:46 - 2013-09-20 18:14 - 00000000 ____D () C:\Users\KaliKali\AppData\Roaming\.minecraft 2014-01-26 11:22 - 2014-01-14 21:13 - 00000000 ____D () C:\Users\KaliKali\Desktop\klizanje 2014 2014-01-26 11:19 - 2013-04-14 15:01 - 00000000 ____D () C:\Users\KaliKali\Desktop\SLIKE 2014-01-21 08:18 - 2014-01-21 08:18 - 00005175 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log 2014-01-21 08:18 - 2013-10-18 17:25 - 00000000 ____D () C:\ProgramData\Oracle 2014-01-21 08:18 - 2013-06-24 11:36 - 00000000 ____D () C:\Program Files (x86)\Java 2014-01-19 15:34 - 2013-04-14 14:16 - 00000000 ____D () C:\Users\KaliKali\Documents\Outlook Files 2014-01-19 13:15 - 2014-01-19 12:38 - 00150256 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys 2014-01-19 12:44 - 2013-04-14 16:23 - 00000376 _____ () C:\Users\KaliKali\AppData\Roamingprivacy.xml 2014-01-19 12:41 - 2014-01-19 12:39 - 00893440 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys 2014-01-19 12:41 - 2014-01-19 12:39 - 00635392 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys 2014-01-19 12:41 - 2014-01-19 12:39 - 00082824 _____ (BitDefender SRL) C:\Windows\system32\Drivers\bdsandbox.sys 2014-01-19 12:41 - 2014-01-19 12:38 - 00389240 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys 2014-01-19 12:41 - 2013-04-14 16:22 - 00261056 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys 2014-01-19 12:40 - 2014-01-19 12:39 - 00000000 ____D () C:\Users\KaliKali\AppData\Roaming\Bitdefender 2014-01-19 12:39 - 2014-01-19 12:39 - 00362928 _____ () C:\ProgramData\1390131529.bdinstall.bin 2014-01-19 12:39 - 2014-01-19 12:39 - 00253404 ____H () C:\bdr-ld12 2014-01-19 12:39 - 2014-01-19 12:39 - 00009216 ____H () C:\bdr-ld12.mbr 2014-01-19 12:39 - 2014-01-19 12:39 - 00002241 _____ () C:\Users\Public\Desktop\Bitdefender Safepay.lnk 2014-01-19 12:39 - 2014-01-19 12:39 - 00002122 _____ () C:\Users\Public\Desktop\Bitdefender Total Security 2013.lnk 2014-01-19 12:39 - 2014-01-19 12:39 - 00000874 ____H () C:\bdr-cf12 2014-01-19 12:39 - 2014-01-19 12:39 - 00000385 _____ () C:\Windows\system32\user_gensett.xml 2014-01-19 12:39 - 2014-01-19 12:39 - 00000000 ____D () C:\ProgramData\Bitdefender 2014-01-19 12:39 - 2014-01-19 12:38 - 00000000 ____D () C:\Program Files\Bitdefender 2014-01-19 12:38 - 2014-01-19 12:38 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender 2014-01-15 21:13 - 2014-01-15 21:13 - 00000000 ____D () C:\Users\KaliKali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HTC Home 2014-01-15 17:25 - 2014-01-15 17:25 - 00163376 _____ () C:\Users\KaliKali\Desktop\htchome_setup.exe 2014-01-15 14:04 - 2013-08-01 22:42 - 00000000 ____D () C:\Windows\system32\MRT 2014-01-15 13:54 - 2009-07-14 05:45 - 00416712 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-01-12 13:06 - 2009-07-14 06:08 - 00032614 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2014-01-06 16:20 - 2013-04-14 12:17 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-01-04 22:50 - 2013-08-17 15:08 - 00264192 ___SH () C:\Users\KaliKali\Desktop\Thumbs.db ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2014-01-29 18:41 ==================== End Of Log ============================ mycity.rs/must-login.png a evo i drugi deo aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software Run date: 2014-02-02 16:38:50 ----------------------------- 16:38:50.590 OS Version: Windows x64 6.1.7601 Service Pack 1 16:38:50.591 Number of processors: 4 586 0x3A09 16:38:50.591 ComputerName: KALIKALI-PC UserName: KaliKali 16:38:50.731 Initialize success 16:39:49.904 AVAST engine defs: 14020200 16:40:22.844 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 16:40:22.844 Disk 0 Vendor: OCZ-VERTEX4 1.5 Size: 122104MB BusType: 11 16:40:22.844 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP1T0L0-1 16:40:22.844 Disk 1 Vendor: TOSHIBA_DT01ACA100 MS2OA750 Size: 953869MB BusType: 11 16:40:22.854 Disk 0 MBR read successfully 16:40:22.854 Disk 0 MBR scan 16:40:22.914 Disk 0 Windows 7 default MBR code 16:40:22.914 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048 16:40:22.914 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 122002 MB offset 206848 16:40:22.924 Disk 0 scanning C:\Windows\system32\drivers 16:40:25.644 Service scanning 16:40:26.474 Service BdfNdisf c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys LOCKED 5 16:40:26.494 Service bdfwfpf C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys LOCKED 5 16:40:29.354 Service MSICDSetup E:\CDriver64.sys LOCKED 21 16:40:29.724 Service NTIOLib_1_0_C E:\NTIOLib_X64.sys LOCKED 21 16:40:32.764 Modules scanning 16:40:32.764 Disk 0 trace - called modules: 16:40:32.764 ntoskrnl.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0xfffffa80066812c0]<<sptd.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys 16:40:32.774 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8006f7b060] 16:40:32.774 3 CLASSPNP.SYS[fffff8800161743f] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa80068ff680] 16:40:32.774 \Driver\atapi[0xfffffa80068d4bf0] -> IRP_MJ_CREATE -> 0xfffffa80066812c0 16:40:32.914 AVAST engine scan C:\Windows 16:40:33.374 AVAST engine scan C:\Windows\system32 16:41:45.274 AVAST engine scan C:\Windows\system32\drivers 16:41:48.554 AVAST engine scan C:\Users\KaliKali 16:42:46.316 AVAST engine scan C:\ProgramData 16:42:50.976 Scan finished successfully 16:43:02.560 Disk 0 MBR has been saved successfully to "C:\Users\KaliKali\Desktop\MBR.dat" 16:43:02.620 The log file has been saved successfully to "C:\Users\KaliKali\Desktop\aswMBR.txt" Dopuna: 02 Feb 2014 16:59 primetio sam da je malopre bolje radilo,sad mi je posle ovih zadnjih pregleda kao i sto je bilo,koci i sporo radi

Profil

TwinHeadedEagle Poslao: 02 Feb 2014 17:55 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! 1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod: AlternateDataStreams: C:\Users\KaliKali\Desktop\FRST64.exe:BDU AlternateDataStreams: C:\Users\KaliKali\Desktop\htchome_setup.exe:BDU AlternateDataStreams: C:\Users\KaliKali\Desktop\Minecraft_1.7.exe:BDU AlternateDataStreams: C:\Users\KaliKali\Desktop\tb_Burek.com.exe:BDU AlternateDataStreams: C:\Users\KaliKali\Documents\ztjztvggggggg.exe:BDU Task: {1DA59D36-B6B9-4239-A0AC-4823138E943B} - System32\Tasks\SmartPCFix Task => C:\Program Files (x86)\SmartPCFix\SmartPCFix.exe <==== ATTENTION Task: {AD5C232F-55E2-4F02-82D6-38CD581FEF19} - \SomotoUpdateCheckerAutoStart No Task File C:\Program Files (x86)\SmartPCFix cmd: ipconfig /flushdns 2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi. 3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj. Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema. Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku. Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a. Zatim Preuzmi "Xplode"-ov AdwCleaner () i sacuvaj ga na Desktop Dvoklikom pokreni program. Klikni na dugme [Scan] i pricekaj da program zavrsi. Klikni na dugme [Clean] Program ce zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni Ok kao potvrdu. Na sledeca dva prozora koja se otvore (Informations i Restart required ) klikni Ok Racunar ce se restartovati a potom otvoriti notepad (C:\AdwCleaner[S1].txt) sa izvestajem. Sacuvaj taj notepad na Desktop i okaci ga uz poruku koristeci opciju "Prikaci fajl" Napomena: Izvestaj ce takodje biti sacuvan na C:\AdwCleaner[S1].txt

Profil

kalikali Poslao: 02 Feb 2014 18:23 Idi na vrh
offline kalikali Novi MyCity građanin Pridružio: 12 Jan 2012 Poruke: 17	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 02 Feb 2014 18:08 Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-02-2014 04 Ran by KaliKali (administrator) on KALIKALI-PC on 02-02-2014 18:06:58 Running from C:\Users\KaliKali\Desktop Windows 7 Ultimate Service Pack 1 (X64) OS Language: English(US) Internet Explorer Version 11 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe (AMD) C:\Windows\System32\atiesrxx.exe (Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe (AMD) C:\Windows\System32\atieclxx.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2013\bdparentalservice.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender Safebox\safeboxservice.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2013\bdagent.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe () C:\Program Files (x86)\HTC Home\Clock.exe (BitTorrent Inc.) C:\Program Files (x86)\uTorrent\utorrent.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2013\bdparentalsystray.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_43.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_43.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6839952 2012-09-13] (Realtek Semiconductor) HKLM\...\Run: [Bdagent] - C:\Program Files\Bitdefender\Bitdefender 2013\bdagent.exe [1571072 2014-01-19] (Bitdefender) HKLM-x32\...\Run: [IMSS] - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134176 2012-10-22] (Intel Corporation) HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642808 2012-12-19] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation) HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKU\S-1-5-21-79928162-2191768633-3156743557-1000\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3674320 2013-01-08] (DT Soft Ltd) HKU\S-1-5-21-79928162-2191768633-3156743557-1000\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20588704 2013-11-15] (Skype Technologies S.A.) HKU\S-1-5-21-79928162-2191768633-3156743557-1000\...\Run: [Clock Widget (HTC Home)] - C:\Program Files (x86)\HTC Home\Clock.exe [2036736 2011-11-28] () HKU\S-1-5-21-79928162-2191768633-3156743557-1000\...\Run: [uTorrent] - C:\Program Files (x86)\uTorrent\utorrent.exe [802136 2013-05-02] (BitTorrent Inc.) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = msn.com/?ocid=iehp HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x7AF0618C0039CE01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = sr-rs HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage} SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage} BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Winsock: Catalog9 01 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 02 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 03 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 04 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 05 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 06 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 07 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 08 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 09 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 10 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9 21 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider32\BdProvider.dll [96672] (Bitdefender) Winsock: Catalog9-x64 01 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 02 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 03 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 04 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 05 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 06 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 07 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 08 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 09 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 10 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Winsock: Catalog9-x64 21 C:\Program Files\Bitdefender\Bitdefender 2013\BdProvider.dll [117296] (Bitdefender) Tcpip\Parameters: [DhcpNameServer] 89.216.1.30 89.216.1.50 FireFox: ======== FF ProfilePath: C:\Users\KaliKali\AppData\Roaming\Mozilla\Firefox\Profiles\kf9kxjv0.default-1391261196523 FF Homepage: hxxp://www.sbb.rs/SBB/1/Naslovna+strana.shtml FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll () FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @verimatrix.com/ViewRightWeb - C:\Program Files (x86)\Verimatrix\ViewRight Web\\npViewRight.dll (Verimatrix, Inc.) FF Plugin HKCU: @eximion.com/KalydoPlayer - C:\Users\KaliKali\AppData\Roaming\Kalydo\KalydoPlayer\bin2\npkalydo.dll (Eximion B.V.) FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\KaliKali\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF Plugin HKCU: @verimatrix.com/ViewRightWeb - C:\Program Files (x86)\Verimatrix\ViewRight Web\\npViewRight.dll (Verimatrix, Inc.) FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF Extension: Burek.com - C:\Users\KaliKali\AppData\Roaming\Mozilla\Firefox\Profiles\kf9kxjv0.default-1391261196523\Extensions\{2dc11ee0-b147-44b3-b6cb-4b773ec94b5b} [2014-02-02] FF Extension: Downloads Window - C:\Users\KaliKali\AppData\Roaming\Mozilla\Firefox\Profiles\kf9kxjv0.default-1391261196523\Extensions\{a7213cf2-fa1e-4373-88ff-255d0abd3020}.xpi [2014-02-01] FF Extension: Adblock Plus - C:\Users\KaliKali\AppData\Roaming\Mozilla\Firefox\Profiles\kf9kxjv0.default-1391261196523\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-02-01] FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2013\bdtbext FF Extension: bdToolbar - C:\Program Files\Bitdefender\Bitdefender 2013\bdtbext [2014-01-19] FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2013\bdtbext FF Extension: bdToolbar - C:\Program Files\Bitdefender\Bitdefender 2013\bdtbext [2014-01-19] Chrome: ======= CHR HomePage: hxxp://www.google.com/ CHR RestoreOnStartup: "hxxp://www.google.com/" CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll No File CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll No File CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\pdf.dll No File CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) CHR Plugin: (Foxit Reader Plugin for Mozilla) - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation) CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File CHR Plugin: (Unity Player) - C:\Users\KaliKali\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) CHR Plugin: (Kalydo Player Plugin for Mozilla) - C:\Users\KaliKali\AppData\Roaming\Kalydo\KalydoPlayer\bin2\npkalydo.dll (Eximion B.V.) CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll No File CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll No File CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\Windows\SysWOW64\npDeployJava1.dll No File CHR Extension: (YouTube) - C:\Users\KaliKali\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-07-21] CHR Extension: (Google Search) - C:\Users\KaliKali\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-07-21] CHR Extension: (Google Wallet) - C:\Users\KaliKali\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-14] CHR Extension: (Gmail) - C:\Users\KaliKali\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-07-21] ==================== Services (Whitelisted) ================= R2 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2013\bdparentalservice.exe [69392 2014-01-19] (Bitdefender) R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [149032 2012-08-16] () R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166432 2012-10-22] (Intel Corporation) R2 SafeBox; C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [95184 2014-01-19] (Bitdefender) R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe [67320 2014-01-19] (Bitdefender) R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe [1645256 2014-01-19] (Bitdefender) ==================== Drivers (Whitelisted) ==================== R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [893440 2014-01-19] (BitDefender) R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [261056 2014-01-19] (BitDefender) R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [635392 2014-01-19] (BitDefender) R1 BdfNdisf; c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [93600 2014-01-19] (BitDefender LLC) R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [103504 2011-11-14] (BitDefender LLC) S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2014-01-19] (BitDefender SRL) R1 BDVEDISK; C:\Windows\System32\DRIVERS\bdvedisk.sys [76944 2012-04-17] (BitDefender) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-09-06] (DT Soft Ltd) R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2014-01-19] (BitDefender LLC) R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [20968 2012-08-16] () R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [19944 2012-08-16] () R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [46016 2012-08-16] () R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2013-04-14] (Duplex Secure Ltd.) R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [389240 2014-01-19] (BitDefender S.R.L.) R3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2014-02-02] () U3 avf91di0; C:\Windows\System32\Drivers\avf91di0.sys [0 ] (Microsoft Corporation) S3 MSICDSetup; \??\E:\CDriver64.sys [x] S3 NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys [x] S3 VGPU; System32\drivers\rdvgkmd.sys [x] U3 aswMBR; \??\C:\Users\KaliKali\AppData\Local\Temp\aswMBR.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-02-02 18:01 - 2014-02-02 18:01 - 00000645 _____ () C:\Users\KaliKali\Desktop\fixlist.txt 2014-02-02 16:43 - 2014-02-02 16:43 - 00002528 _____ () C:\Users\KaliKali\Desktop\aswMBR.txt 2014-02-02 16:43 - 2014-02-02 16:43 - 00000512 _____ () C:\Users\KaliKali\Desktop\MBR.dat 2014-02-02 16:38 - 2014-02-02 16:38 - 04745728 _____ (AVAST Software) C:\Users\KaliKali\Desktop\aswMBR.exe 2014-02-02 16:36 - 2014-02-02 18:06 - 00018497 _____ () C:\Users\KaliKali\Desktop\FRST.txt 2014-02-02 16:36 - 2014-02-02 18:06 - 00000000 ____D () C:\FRST 2014-02-02 16:36 - 2014-02-02 16:36 - 00031447 _____ () C:\Users\KaliKali\Desktop\Addition.txt 2014-02-02 16:35 - 2014-02-02 16:35 - 02080256 _____ (Farbar) C:\Users\KaliKali\Desktop\FRST64.exe 2014-02-02 16:28 - 2014-02-02 16:28 - 00657776 _____ (Conduit) C:\Users\KaliKali\Desktop\tb_Burek.com.exe 2014-02-02 16:17 - 2013-10-18 01:11 - 00024064 _____ () C:\Windows\zoek-delete.exe 2014-02-02 16:04 - 2014-02-02 15:39 - 00019403 _____ () C:\zoek-results2014-02-02-143953.log 2014-02-02 15:38 - 2014-02-02 15:27 - 00001100 _____ () C:\zoek-results2014-02-02-142756.log 2014-02-02 15:27 - 2014-02-02 16:18 - 00031476 _____ () C:\zoek-results.log 2014-02-02 15:25 - 2014-02-02 16:16 - 00000000 ____D () C:\zoek_backup 2014-02-02 13:21 - 2014-02-02 16:18 - 00094656 _____ (CACE Technologies) C:\Windows\system32\WPRO_41_2001woem.tmp 2014-02-02 13:21 - 2014-02-02 16:18 - 00003800 _____ () C:\Windows\PFRO.log 2014-02-02 13:21 - 2014-02-02 16:18 - 00000112 _____ () C:\Windows\setupact.log 2014-02-02 13:21 - 2014-02-02 13:21 - 00000000 _____ () C:\Windows\setuperr.log 2014-02-01 15:11 - 2014-02-01 15:11 - 00000000 ____D () C:\Users\KaliKali\Doctor Web 2014-02-01 15:11 - 2014-02-01 15:11 - 00000000 ____D () C:\ProgramData\Doctor Web 2014-02-01 14:19 - 2014-02-01 14:26 - 00000000 ____D () C:\Users\KaliKali\Desktop\Old Firefox Data 2014-01-31 08:00 - 2014-01-31 08:00 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2014-01-21 08:18 - 2014-01-21 08:18 - 00005175 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log 2014-01-19 12:39 - 2014-01-19 12:41 - 00893440 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys 2014-01-19 12:39 - 2014-01-19 12:41 - 00635392 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys 2014-01-19 12:39 - 2014-01-19 12:41 - 00082824 _____ (BitDefender SRL) C:\Windows\system32\Drivers\bdsandbox.sys 2014-01-19 12:39 - 2014-01-19 12:40 - 00000000 ____D () C:\Users\KaliKali\AppData\Roaming\Bitdefender 2014-01-19 12:39 - 2014-01-19 12:39 - 00362928 _____ () C:\ProgramData\1390131529.bdinstall.bin 2014-01-19 12:39 - 2014-01-19 12:39 - 00253404 ____H () C:\bdr-ld12 2014-01-19 12:39 - 2014-01-19 12:39 - 00009216 ____H () C:\bdr-ld12.mbr 2014-01-19 12:39 - 2014-01-19 12:39 - 00002241 _____ () C:\Users\Public\Desktop\Bitdefender Safepay.lnk 2014-01-19 12:39 - 2014-01-19 12:39 - 00002122 _____ () C:\Users\Public\Desktop\Bitdefender Total Security 2013.lnk 2014-01-19 12:39 - 2014-01-19 12:39 - 00000874 ____H () C:\bdr-cf12 2014-01-19 12:39 - 2014-01-19 12:39 - 00000385 _____ () C:\Windows\system32\user_gensett.xml 2014-01-19 12:39 - 2014-01-19 12:39 - 00000000 ____D () C:\ProgramData\Bitdefender 2014-01-19 12:39 - 2012-07-11 19:59 - 37161560 ____H () C:\bdr-im12.gz 2014-01-19 12:39 - 2012-05-24 13:39 - 02510608 ____H () C:\bdr-bz12 2014-01-19 12:39 - 2012-04-17 14:34 - 00076944 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys 2014-01-19 12:39 - 2011-11-14 20:16 - 00090192 _____ (BitDefender LLC) C:\Windows\system32\Drivers\BdfNdisf6.sys 2014-01-19 12:38 - 2014-01-19 13:15 - 00150256 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys 2014-01-19 12:38 - 2014-01-19 12:41 - 00389240 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys 2014-01-19 12:38 - 2014-01-19 12:39 - 00000000 ____D () C:\Program Files\Bitdefender 2014-01-19 12:38 - 2014-01-19 12:38 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender 2014-01-15 21:13 - 2014-02-02 16:18 - 00000000 ____D () C:\Program Files (x86)\HTC Home 2014-01-15 21:13 - 2014-01-15 21:13 - 00000000 ____D () C:\Users\KaliKali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HTC Home 2014-01-15 17:25 - 2014-01-15 17:25 - 00163376 _____ () C:\Users\KaliKali\Desktop\htchome_setup.exe 2014-01-15 09:26 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2014-01-15 09:26 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2014-01-15 09:26 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys 2014-01-15 09:26 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2014-01-15 09:26 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys 2014-01-15 09:26 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys 2014-01-15 09:26 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys 2014-01-15 09:26 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2014-01-15 09:26 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-01-14 21:13 - 2014-01-26 11:22 - 00000000 ____D () C:\Users\KaliKali\Desktop\klizanje 2014 ==================== One Month Modified Files and Folders ======= 2014-02-02 18:06 - 2014-02-02 16:36 - 00018497 _____ () C:\Users\KaliKali\Desktop\FRST.txt 2014-02-02 18:06 - 2014-02-02 16:36 - 00000000 ____D () C:\FRST 2014-02-02 18:05 - 2013-04-14 13:07 - 00000000 ____D () C:\Users\KaliKali\AppData\Roaming\uTorrent 2014-02-02 18:04 - 2013-04-14 16:07 - 00000000 ____D () C:\Users\KaliKali\AppData\Roaming\Skype 2014-02-02 18:01 - 2014-02-02 18:01 - 00000645 _____ () C:\Users\KaliKali\Desktop\fixlist.txt 2014-02-02 17:58 - 2013-05-14 22:24 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-02-02 17:24 - 2013-09-13 07:22 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-02-02 16:43 - 2014-02-02 16:43 - 00002528 _____ () C:\Users\KaliKali\Desktop\aswMBR.txt 2014-02-02 16:43 - 2014-02-02 16:43 - 00000512 _____ () C:\Users\KaliKali\Desktop\MBR.dat 2014-02-02 16:42 - 2013-07-06 15:48 - 00000000 ____D () C:\Users\KaliKali\Desktop\TABLET 2014-02-02 16:38 - 2014-02-02 16:38 - 04745728 _____ (AVAST Software) C:\Users\KaliKali\Desktop\aswMBR.exe 2014-02-02 16:38 - 2013-08-17 15:08 - 00264192 ___SH () C:\Users\KaliKali\Desktop\Thumbs.db 2014-02-02 16:36 - 2014-02-02 16:36 - 00031447 _____ () C:\Users\KaliKali\Desktop\Addition.txt 2014-02-02 16:35 - 2014-02-02 16:35 - 02080256 _____ (Farbar) C:\Users\KaliKali\Desktop\FRST64.exe 2014-02-02 16:28 - 2014-02-02 16:28 - 00657776 _____ (Conduit) C:\Users\KaliKali\Desktop\tb_Burek.com.exe 2014-02-02 16:26 - 2013-04-14 11:12 - 01400284 _____ () C:\Windows\WindowsUpdate.log 2014-02-02 16:25 - 2009-07-14 05:45 - 00026544 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-02-02 16:25 - 2009-07-14 05:45 - 00026544 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-02-02 16:22 - 2009-07-14 06:13 - 00782922 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-02-02 16:18 - 2014-02-02 15:27 - 00031476 _____ () C:\zoek-results.log 2014-02-02 16:18 - 2014-02-02 13:21 - 00094656 _____ (CACE Technologies) C:\Windows\system32\WPRO_41_2001woem.tmp 2014-02-02 16:18 - 2014-02-02 13:21 - 00003800 _____ () C:\Windows\PFRO.log 2014-02-02 16:18 - 2014-02-02 13:21 - 00000112 _____ () C:\Windows\setupact.log 2014-02-02 16:18 - 2014-01-15 21:13 - 00000000 ____D () C:\Program Files (x86)\HTC Home 2014-02-02 16:18 - 2013-05-14 22:24 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-02-02 16:18 - 2013-04-14 11:22 - 00034752 _____ () C:\Windows\system32\Drivers\WPRO_41_2001.sys 2014-02-02 16:18 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-02-02 16:16 - 2014-02-02 15:25 - 00000000 ____D () C:\zoek_backup 2014-02-02 15:39 - 2014-02-02 16:04 - 00019403 _____ () C:\zoek-results2014-02-02-143953.log 2014-02-02 15:27 - 2014-02-02 15:38 - 00001100 _____ () C:\zoek-results2014-02-02-142756.log 2014-02-02 13:21 - 2014-02-02 13:21 - 00000000 _____ () C:\Windows\setuperr.log 2014-02-02 13:16 - 2013-11-22 16:52 - 00000000 ____D () C:\Windows\Minidump 2014-02-02 13:16 - 2013-06-10 17:56 - 00000000 ____D () C:\Users\KaliKali\AppData\Local\CrashDumps 2014-02-02 13:16 - 2013-04-14 13:25 - 00000000 ____D () C:\Users\KaliKali\AppData\Roaming\AIMP3 2014-02-02 09:29 - 2013-10-05 15:03 - 00000000 ____D () C:\Users\KaliKali\AppData\Local\PMB Files 2014-02-02 09:28 - 2013-10-05 15:03 - 00000000 ____D () C:\ProgramData\PMB Files 2014-02-02 07:56 - 2013-12-22 20:39 - 00000000 ____D () C:\Windows\system32\log 2014-02-01 15:56 - 2013-12-12 07:43 - 00000000 ____D () C:\Users\KaliKali\Desktop\darko 1 2014-02-01 15:11 - 2014-02-01 15:11 - 00000000 ____D () C:\Users\KaliKali\Doctor Web 2014-02-01 15:11 - 2014-02-01 15:11 - 00000000 ____D () C:\ProgramData\Doctor Web 2014-02-01 15:11 - 2013-04-14 11:12 - 00000000 ____D () C:\Users\KaliKali 2014-02-01 14:49 - 2013-04-14 15:05 - 00000000 ____D () C:\Users\KaliKali\Desktop\SPOTOVI 2014-02-01 14:26 - 2014-02-01 14:19 - 00000000 ____D () C:\Users\KaliKali\Desktop\Old Firefox Data 2014-01-31 08:00 - 2014-01-31 08:00 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2014-01-31 07:56 - 2013-08-05 18:20 - 00000000 ____D () C:\Users\KaliKali\AppData\Local\Adobe 2014-01-31 07:56 - 2013-04-14 13:16 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-01-31 07:56 - 2013-04-14 13:16 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-01-31 07:56 - 2013-04-14 13:16 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2014-01-30 18:46 - 2013-09-20 18:14 - 00000000 ____D () C:\Users\KaliKali\AppData\Roaming\.minecraft 2014-01-26 11:22 - 2014-01-14 21:13 - 00000000 ____D () C:\Users\KaliKali\Desktop\klizanje 2014 2014-01-26 11:19 - 2013-04-14 15:01 - 00000000 ____D () C:\Users\KaliKali\Desktop\SLIKE 2014-01-21 08:18 - 2014-01-21 08:18 - 00005175 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log 2014-01-21 08:18 - 2013-10-18 17:25 - 00000000 ____D () C:\ProgramData\Oracle 2014-01-21 08:18 - 2013-06-24 11:36 - 00000000 ____D () C:\Program Files (x86)\Java 2014-01-19 15:34 - 2013-04-14 14:16 - 00000000 ____D () C:\Users\KaliKali\Documents\Outlook Files 2014-01-19 13:15 - 2014-01-19 12:38 - 00150256 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys 2014-01-19 12:44 - 2013-04-14 16:23 - 00000376 _____ () C:\Users\KaliKali\AppData\Roamingprivacy.xml 2014-01-19 12:41 - 2014-01-19 12:39 - 00893440 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys 2014-01-19 12:41 - 2014-01-19 12:39 - 00635392 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys 2014-01-19 12:41 - 2014-01-19 12:39 - 00082824 _____ (BitDefender SRL) C:\Windows\system32\Drivers\bdsandbox.sys 2014-01-19 12:41 - 2014-01-19 12:38 - 00389240 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys 2014-01-19 12:41 - 2013-04-14 16:22 - 00261056 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys 2014-01-19 12:40 - 2014-01-19 12:39 - 00000000 ____D () C:\Users\KaliKali\AppData\Roaming\Bitdefender 2014-01-19 12:39 - 2014-01-19 12:39 - 00362928 _____ () C:\ProgramData\1390131529.bdinstall.bin 2014-01-19 12:39 - 2014-01-19 12:39 - 00253404 ____H () C:\bdr-ld12 2014-01-19 12:39 - 2014-01-19 12:39 - 00009216 ____H () C:\bdr-ld12.mbr 2014-01-19 12:39 - 2014-01-19 12:39 - 00002241 _____ () C:\Users\Public\Desktop\Bitdefender Safepay.lnk 2014-01-19 12:39 - 2014-01-19 12:39 - 00002122 _____ () C:\Users\Public\Desktop\Bitdefender Total Security 2013.lnk 2014-01-19 12:39 - 2014-01-19 12:39 - 00000874 ____H () C:\bdr-cf12 2014-01-19 12:39 - 2014-01-19 12:39 - 00000385 _____ () C:\Windows\system32\user_gensett.xml 2014-01-19 12:39 - 2014-01-19 12:39 - 00000000 ____D () C:\ProgramData\Bitdefender 2014-01-19 12:39 - 2014-01-19 12:38 - 00000000 ____D () C:\Program Files\Bitdefender 2014-01-19 12:38 - 2014-01-19 12:38 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender 2014-01-15 21:13 - 2014-01-15 21:13 - 00000000 ____D () C:\Users\KaliKali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HTC Home 2014-01-15 17:25 - 2014-01-15 17:25 - 00163376 _____ () C:\Users\KaliKali\Desktop\htchome_setup.exe 2014-01-15 14:04 - 2013-08-01 22:42 - 00000000 ____D () C:\Windows\system32\MRT 2014-01-15 13:54 - 2009-07-14 05:45 - 00416712 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-01-12 13:06 - 2009-07-14 06:08 - 00032614 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2014-01-06 16:20 - 2013-04-14 12:17 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2014-01-29 18:41 ==================== End Of Log ============================ Dopuna: 02 Feb 2014 18:23 evo i ovo mycity.rs/must-login.png

Profil

TwinHeadedEagle Poslao: 02 Feb 2014 18:48 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Za FRST si mi dostavio izvestaj skeniranja, a trebalo je Fixlog.txt

Profil

kalikali Poslao: 02 Feb 2014 19:00 Idi na vrh
offline kalikali Novi MyCity građanin Pridružio: 12 Jan 2012 Poruke: 17	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! TwinHeadedEagle ::Za FRST si mi dostavio izvestaj skeniranja, a trebalo je Fixlog.txt a gde bi on trebao da bude,i pod kojim natpisom,jer ja na desktopu imam FRST.txt i fixlist.txt

Profil

TwinHeadedEagle Poslao: 02 Feb 2014 22:11 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pokreni FRST i klikni na Fix. Nakon toga mi dostavi izvestaj koji budes dobio...

Profil

kalikali Poslao: 02 Feb 2014 22:15 Idi na vrh
offline kalikali Novi MyCity građanin Pridružio: 12 Jan 2012 Poruke: 17	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Napisano: 02 Feb 2014 22:14 Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 01-02-2014 04 Ran by KaliKali at 2014-02-02 22:12:58 Run:1 Running from C:\Users\KaliKali\Desktop Boot Mode: Normal ============================================== Content of fixlist: *************** AlternateDataStreams: C:\Users\KaliKali\Desktop\FRST64.exe:BDU AlternateDataStreams: C:\Users\KaliKali\Desktop\htchome_setup.exe:BDU AlternateDataStreams: C:\Users\KaliKali\Desktop\Minecraft_1.7.exe:BDU AlternateDataStreams: C:\Users\KaliKali\Desktop\tb_Burek.com.exe:BDU AlternateDataStreams: C:\Users\KaliKali\Documents\ztjztvggggggg.exe:BDU Task: {1DA59D36-B6B9-4239-A0AC-4823138E943B} - System32\Tasks\SmartPCFix Task => C:\Program Files (x86)\SmartPCFix\SmartPCFix.exe <==== ATTENTION Task: {AD5C232F-55E2-4F02-82D6-38CD581FEF19} - \SomotoUpdateCheckerAutoStart No Task File C:\Program Files (x86)\SmartPCFix cmd: ipconfig /flushdns *************** C:\Users\KaliKali\Desktop\FRST64.exe => ":BDU" ADS removed successfully. C:\Users\KaliKali\Desktop\htchome_setup.exe => ":BDU" ADS removed successfully. C:\Users\KaliKali\Desktop\Minecraft_1.7.exe => ":BDU" ADS removed successfully. C:\Users\KaliKali\Desktop\tb_Burek.com.exe => ":BDU" ADS removed successfully. C:\Users\KaliKali\Documents\ztjztvggggggg.exe => ":BDU" ADS removed successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1DA59D36-B6B9-4239-A0AC-4823138E943B} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1DA59D36-B6B9-4239-A0AC-4823138E943B} => Key deleted successfully. C:\Windows\System32\Tasks\SmartPCFix Task => Moved successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SmartPCFix Task => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{AD5C232F-55E2-4F02-82D6-38CD581FEF19} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AD5C232F-55E2-4F02-82D6-38CD581FEF19} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SomotoUpdateCheckerAutoStart => Key deleted successfully. "C:\Program Files (x86)\SmartPCFix" => File/Directory not found. ========= ipconfig /flushdns ========= Windows IP Configuration Successfully flushed the DNS Resolver Cache. ========= End of CMD: ========= ==== End of Fixlog ==== Dopuna: 02 Feb 2014 22:15 rekao bih da sad radi kako treba,popravilo se ono od malopre sto je radilo sporije i kocilo

Profil

TwinHeadedEagle Poslao: 02 Feb 2014 22:21 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! U redu, prati situaciju, pa mi javi kako se ponasa racunar

Profil

MyCity » Ambulanta -> Arhiva Ambulante » problem sa firefoxom

Ko je trenutno na forumu

Ukupno su 905 korisnika na forumu :: 12 registrovanih, 1 sakriven i 892 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: cikadeda, comi_pfc, Darko_X, draggan, goxin, havoc995, milenko crazy north, prle122, sasa76, Shilok, vathra, zlaya011

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by