MyCity » Ambulanta -> Arhiva Ambulante » problem vk umjesto facebooka

problem vk umjesto facebooka

Napisano na dan: 22.3.2014
1

problem vk umjesto facebooka
Sledeća strana Pagination

Idi na vrh

Poslao: 22 Mar 2014 19:59
Idi na vrh
offline
  • Pridružio: 22 Mar 2014
  • Poruke: 13

Imam problem umjesto facebooka otvara mi se vk i nemogu se ulogirat preko svog kompjutera na svoj profil. Molim vas pomozite mi!!


ADSL 10/ 100


DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 8.0.7600.16800 BrowserJavaVersion: 10.45.2
Run by vedran at 19:24:37 on 2014-03-22
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\ProgramData\BetterSoft\OptimizerPro\OptimizerPro.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = [Link mogu videti samo ulogovani korisnici]
mStart Page = [Link mogu videti samo ulogovani korisnici]
uProxyServer = hxxp=127.0.0.1
uURLSearchHooks: DVDVideoSoftTB Toolbar: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\prxtbDVD0.dll
uURLSearchHooks: {687578b9-7132-4a7a-80e4-30ee31099e03} - <orphaned>
mURLSearchHooks: DVDVideoSoftTB Toolbar: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\prxtbDVD0.dll
BHO: Speed Test 127: {11C8C9C0-D918-44C0-8B5E-D297DA42F2C7} - C:\Program Files (x86)\Speed Test 127\ScriptHost.dll
BHO: EbaooykBroiwise: {3B8B6348-B7AE-0EA6-831A-862F960ED339} - C:\ProgramData\EbaooykBroiwise\516e6339aa09f.dll
BHO: Search-Results Toolbar: {3ec1a45c-8bc3-4bfe-b226-4051c5d3d068} -
BHO: Fast Search: {5AB7104A-B71F-49AD-9154-F7F8806AE848} - C:\Program Files (x86)\Surf Canyon\surfcanyon.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Browse2savee: {7DB429BE-3BC1-386A-8240-108652211B53} - C:\ProgramData\Browse2savee\516e631697e6c.dll
BHO: DVDVideoSoftTB Toolbar: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\prxtbDVD0.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Skype Plug-In: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -
BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: Freemake.YoutubeButton: {e9e8eb35-ff77-455d-b677-91e5e4fc06c2} -
BHO: Browse2savee: {EB52E2E7-953C-B183-FDB7-7ED8A12C9BD4} - C:\ProgramData\Browse2savee\516e622b3f175.dll
BHO: DVDVideoSoft WebPageAdjuster Class: {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
BHO: Hotspot Shield Class: {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE.dll
BHO: Seearchu-NeewTab: {FB6F5877-8AEF-0179-E384-85B5D442FFAF} - C:\ProgramData\Seearchu-NeewTab\516e628602556.dll
BHO: EazelBar Helper: {FE478DC2-E4AD-4197-8F80-5E456BEBC57F} - C:\Program Files (x86)\EazelBar\Toolbar32.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: DVDVideoSoftTB Toolbar: {872B5B88-9DB5-4310-BDD0-AC189557E5F5} - C:\Program Files (x86)\DVDVideoSoftTB\prxtbDVD0.dll
TB: DVDVideoSoftTB Toolbar: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\prxtbDVD0.dll
TB: Search-Results Toolbar: {3ec1a45c-8bc3-4bfe-b226-4051c5d3d068} -
TB: EazelBar: {EBD839AE-B08C-4fb7-859B-F54AF16C159F} - C:\Program Files (x86)\EazelBar\Toolbar32.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: avast! Online Security: {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -
uRun: [OM2_Monitor] "C:\Program Files (x86)\OLYMPUS\OLYMPUS Master 2\MMonitor.exe" -NoStart
uRun: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
uRun: [Optimizer Pro] C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe
uRun: [GoogleChromeAutoLaunch_E4B601A048BE9A47AC3681DB3BDC5E9F] "C:\Users\vedran\AppData\Local\Torch\Application\torch.exe" --no-startup-window
uRun: [Pokki] C:\Windows\System32\rundll32.exe "C:\Users\vedran\AppData\Local\Pokki\Engine\Launcher.dll",RunLaunchPlatform
uRun: [Boot Cleanup] C:\Users\vedran\AppData\Local\CCleaner\Bin\CCleaner.exe
uRun: [BrowserUid] C:\Users\vedran\AppData\Local\PlayFree Browser\Application\PlayFreeBrowser.exe
uRun: [Exetender] "C:\Program Files (x86)\FantastiGames\GPlayer.exe" /runonstartup
uRun: [MPCBrowser Update] "C:\Users\vedran\AppData\Local\MPCBrowser\Update\MPCBrowserUpdate.exe" /c
uRun: [GoogleChromeAutoLaunch_BB3C84E317859ACDEF883F30197A9F9B] "C:\Users\vedran\AppData\Local\PlayFree Browser\Application\playfreebrowser.exe" --no-startup-window --startup
uRun: [msdtc.exe] C:\Users\vedran\AppData\Roaming\DMCache\msdtc.exe
uRun: [QtraxNotification] C:\Users\vedran\Qtrax\Player\Notification.exe
uRun: [wlrmdr.exe] C:\Users\vedran\AppData\Roaming\DMCache\slui.exe
uRun: [Software Informer] "C:\Program Files\Software Informer\softinfo.exe" -autorun
mRun: [MobileConnect] C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe /silent
mRun: [wxpdrv] C:\Windows\services32.exe
mRun: [sysdriver32.exe] "C:\Windows\sysdriver32.exe" rezerv
mRun: [sysdriver32_.exe] "C:\Windows\sysdriver32_.exe" rezerv
mRun: [7346280.exe] "C:\Users\vedran\AppData\Local\Temp\7346280.exe"
mRun: [1536238.exe] "C:\Users\vedran\AppData\Local\Temp\1536238.exe"
mRun: [systemup] "C:\Windows\systemup.exe" stand
mRun: [l1rezerv.exe] "C:\Windows\l1rezerv.exe"
mRun: [tray_ico0] C:\Windows\update.tray-9-0\svchost.exe
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [PrivitizeVPN] C:\Program Files (x86)\PrivitizeVPN\PrivitizeVPN.exe /autorun
mRun: [Boot Cleanup] C:\Program Files\CCleaner\Bin\CCleaner.exe
mRun: [SSDMonitor] C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
mRun: [tray_ico] <no file>
dRun: [Exetender] "C:\Program Files (x86)\FantastiGames\GPlayer.exe" /runonstartup
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableSecureUIAPaths = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: &Download All using 4shared Desktop - C:\Program Files (x86)\4shared Desktop\Desktop.32/D_ALL_LINK
IE: &Download using 4shared Desktop - C:\Program Files (x86)\4shared Desktop\Desktop.32/D_ONE_LINK
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
IE: Free YouTube Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
IE: Free YouTube to MP3 Converter - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} -
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - [Link mogu videti samo ulogovani korisnici]
DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} -
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - [Link mogu videti samo ulogovani korisnici]
DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} - [Link mogu videti samo ulogovani korisnici]
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{B440B85A-0049-40A3-92B7-16F3C8D8A402} : DHCPNameServer = 192.168.1.1
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -
SSODL: WebCheck - <orphaned>
SubSystems: Windows = basesrv,1 winsrv:UserServerDllInitialization,3 consrv:ConServerDllInitialization,2 sxssrv,4
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Speed Test 127: {11C8C9C0-D918-44C0-8B5E-D297DA42F2C7} - C:\Program Files (x86)\Speed Test 127\ScriptHost64.dll
x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -
x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg64.dll
x64-BHO: DVDVideoSoft WebPageAdjuster Class: {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll
x64-BHO: Hotspot Shield Class: {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll
x64-BHO: EazelBar Helper: {FE478DC2-E4AD-4197-8F80-5E456BEBC57F} - C:\Program Files (x86)\EazelBar\Toolbar64.dll
x64-TB: EazelBar: {EBD839AE-B08C-4fb7-859B-F54AF16C159F} - C:\Program Files (x86)\EazelBar\Toolbar64.dll
x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-TB: avast! Online Security: {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -
x64-RunOnce: [c72398] "C:\Windows\System32\cmd.exe" /C START /MIN RD /S /Q "C:\ProgramData\Microsoft\Windows\Pending"^&EXIT
x64-IE: {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll
x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - <orphaned>
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\vedran\AppData\Roaming\Mozilla\Firefox\Profiles\2y9pgrkr.default\
FF - prefs.js: Keyword.Enabled - true
FF - prefs.js: browser.search.defaulturl - [Link mogu videti samo ulogovani korisnici]{searchTerms}
FF - prefs.js: browser.startup.homepage - [Link mogu videti samo ulogovani korisnici]
FF - prefs.js: keyword.URL - [Link mogu videti samo ulogovani korisnici]
FF - prefs.js: network.proxy.type - 0
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\FantastiGames\npExentCtl.dll
FF - plugin: C:\Program Files (x86)\FantastiGames\npGameTreatWidget.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Nitro PDF\Reader 2\npdf.dll
FF - plugin: C:\Program Files (x86)\Nitro PDF\Reader 2\npnitromozilla.dll
FF - plugin: C:\Users\vedran\AppData\Local\MPCBrowser\Update\1.3.27.0\npGoogleUpdate3.dll
FF - plugin: C:\Users\vedran\AppData\Roaming\Mozilla\Firefox\Profiles\2y9pgrkr.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\plugins\np-mswmp.dll
FF - plugin: C:\Users\vedran\AppData\Roaming\Mozilla\Firefox\Profiles\2y9pgrkr.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\plugins\npConduitFirefoxPlugin.dll
FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll
FF - ExtSQL: !HIDDEN! 2013-04-14 18:30; {ACAA314B-EEBA-48e4-AD47-84E31C44796C}; C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
.
---- FIREFOX POLICIES ----
FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=114278&tt=010812_ctrl_3112_3
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar.tlbrSrchUrl - [Link mogu videti samo ulogovani korisnici]
FF - user.js: extensions.BabylonToolbar.id - 4c78131600000000000000306719583d
FF - user.js: extensions.BabylonToolbar.instlDay - 15557
FF - user.js: extensions.BabylonToolbar.vrsn - 1.5.29.1
FF - user.js: extensions.BabylonToolbar.vrsni - 1.5.29.1
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.29.116:15:14
FF - user.js: extensions.BabylonToolbar.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar.tlbrId - base
FF - user.js: extensions.BabylonToolbar.instlRef - sst
FF - user.js: extensions.BabylonToolbar.dfltLng - en
FF - user.js: extensions.BabylonToolbar.excTlbr - false
FF - user.js: extensions.BabylonToolbar.admin - false
user_pref('extensions.autoDisableScopes', 0);user_pref('security.csp.enable', false);user_pref('security.OCSP.enabled', 0);user_pref('extensions.autoDisableScopes', 0);user_pref('security.csp.enable', false);user_pref('security.OCSP.enabled', 0);
============= SERVICES / DRIVERS ===============
.
R? aczaiywv;aczaiywv
R? ahbjsqzb;ahbjsqzb
R? aitjqshv;aitjqshv
R? amdjekvs;amdjekvs
R? atajcetg;atajcetg
R? audhrgry;audhrgry
R? avfgyfsc;avfgyfsc
R? Avira.OE.ServiceHost;Avira Service Host
R? aychafcq;aychafcq
R? BackupStack;Computer Backup (MyPC Backup)
R? bfpkvffl;bfpkvffl
R? bgppadqf;bgppadqf
R? bjjlxfkd;bjjlxfkd
R? bxpfgoig;bxpfgoig
R? bzpoxrpx;bzpoxrpx
R? cbwcymtu;cbwcymtu
R? cdrbjytk;cdrbjytk
R? cekcsypw;cekcsypw
R? clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86
R? clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64
R? cswpgeou;cswpgeou
R? ctmmkenz;ctmmkenz
R? DatamngrCoordinator;Datamngr Coordinator
R? ddoynkvh;ddoynkvh
R? DefaultTabSearch;DefaultTabSearch
R? dgwqbycy;dgwqbycy
R? dheqkdty;dheqkdty
R? dixlmrkh;dixlmrkh
R? drqidbhj;drqidbhj
R? dvqpxcia;dvqpxcia
R? dvzspiss;dvzspiss
R? ebugeqrd;ebugeqrd
R? eeesbokw;eeesbokw
R? eekasamo;eekasamo
R? egmqidwo;egmqidwo
R? ekojwcuj;ekojwcuj
R? encxewum;encxewum
R? eoftyzov;eoftyzov
R? eslijtxa;eslijtxa
R? etklyimd;etklyimd
R? eyxbtyrr;eyxbtyrr
R? faaabzpm;faaabzpm
R? fbqwbxvc;fbqwbxvc
R? fhclpdvu;fhclpdvu
R? fialegxd;fialegxd
R? fqevxmtd;fqevxmtd
R? fqzkokze;fqzkokze
R? Freemake Improver;Freemake Improver
R? gblducjz;gblducjz
R? gcqztrsm;gcqztrsm
R? geqgpmcy;geqgpmcy
R? gjggsnbh;gjggsnbh
R? gjobbtuu;gjobbtuu
R? gnudlllq;gnudlllq
R? gpkvuoaa;gpkvuoaa
R? gpkybxbk;gpkybxbk
R? gsnxjgzk;gsnxjgzk
R? gstvopua;gstvopua
R? gtvffalc;gtvffalc
R? guermvvs;guermvvs
R? gutyjkeu;gutyjkeu
R? gvmzlyjl;gvmzlyjl
R? gwjbwpgr;gwjbwpgr
R? hadgavkm;hadgavkm
R? hgruwrxv;hgruwrxv
R? hmmuyobu;hmmuyobu
R? ibcifnlc;ibcifnlc
R? immdssoy;immdssoy
R? itkehngm;itkehngm
R? izvaipas;izvaipas
R? jbwweexf;jbwweexf
R? jhogjmgm;jhogjmgm
R? jvhefywd;jvhefywd
R? kdkjqvvk;kdkjqvvk
R? kpeguxql;kpeguxql
R? kteigpga;kteigpga
R? lbigmusp;lbigmusp
R? ldhdvmxv;ldhdvmxv
R? llnzndpt;llnzndpt
R? lmpnkosr;lmpnkosr
R? ltaqoqqa;ltaqoqqa
R? luwavqpw;luwavqpw
R? lvvrwxjs;lvvrwxjs
R? mavswkai;mavswkai
R? McComponentHostService;McAfee Security Scan Component Host Service
R? mxdxqmzm;mxdxqmzm
R? nibnwgav;nibnwgav
R? nmzcithh;nmzcithh
R? ntimxcsl;ntimxcsl
R? nvfkswah;nvfkswah
R? nxqhhqud;nxqhhqud
R? odttghon;odttghon
R? oeugmnaw;oeugmnaw
R? ofeqjuow;ofeqjuow
R? ogcgsdzl;ogcgsdzl
R? pfpiexlm;pfpiexlm
R? plkndcdf;plkndcdf
R? polztgny;polztgny
R? ppxerrgg;ppxerrgg
R? PROCEXP113;PROCEXP113
R? psmtacre;psmtacre
R? pwwayjlx;pwwayjlx
R? qctapsfv;qctapsfv
R? qeezmpvm;qeezmpvm
R? qhdxecoa;qhdxecoa
R? qkfiwpkm;qkfiwpkm
R? saduavcz;saduavcz
R? sewtjomv;sewtjomv
R? sliaqzbu;sliaqzbu
R? TFsExDisk;TFsExDisk
R? tigsdhvl;tigsdhvl
R? tjmnuuls;tjmnuuls
R? trgqfbqh;trgqfbqh
R? TuneUp.UtilitiesSvc;TuneUp Utilities Service
R? ujwtrxlv;ujwtrxlv
R? vrkjwmbo;vrkjwmbo
R? vvyhfcei;vvyhfcei
R? WatAdminSvc;Windows Activation Technologies Service
R? whjmobue;whjmobue
R? wrozzueo;wrozzueo
R? wytlohab;wytlohab
R? zchaffza;zchaffza
S? ddservice;ddservice
S? FreemakeVideoCapture;FreemakeVideoCapture
S? hshld;Hotspot Shield Service
S? HssDRV6;Hotspot Shield Routing Driver 6
S? HssWd;Hotspot Shield Monitoring Service
S? MoboroboDeviceService;Moborobo Device Service
S? NitroReaderDriverReadSpool2;NitroPDFReaderDriverCreatorReadSpool2
S? PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service
S? srvbtcclient;srvbtcclient
S? srviecheck;srviecheck
S? srvsysdriver32;srvsysdriver32
S? SrvUpdater;Software Updater
S? taphss6;Anchorfree HSS VPN Adapter
S? TorchCrashHandler;Torch Crash Handler
S? TuneUpUtilitiesDrv;TuneUpUtilitiesDrv
S? Update WebSparkle;Update WebSparkle
S? Updater Service for EazelBar;Updater Service for EazelBar
S? Util WebSparkle;Util WebSparkle
S? VMCService;Vodafone Mobile Connect Service
S? wStLib64;wStLib64
S? wxpdrivers;wxpdrivers
S? X5XSEx_Pr143;X5XSEx_Pr143
.
=============== Created Last 30 ================
.
2014-03-22 04:49:20 61120 ----a-w- C:\Windows\System32\drivers\wStLib64.sys
2014-03-20 04:50:45 56616 ----a-w- C:\Windows\System32\drivers\plkndcdf.sys
2014-03-19 20:45:07 75888 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E370B17D-82F1-4922-ABD1-0BA6D622844D}\offreg.dll
2014-03-19 20:32:50 -------- d--h--w- C:\Windows\update.tray-8-0-lnk
2014-03-19 20:32:50 -------- d--h--w- C:\Windows\update.tray-8-0
2014-03-19 20:17:34 -------- d-----w- C:\ProgramData\Package Cache
2014-03-19 14:25:08 421704 ----a-w- C:\Windows\System32\drivers\hhzsdunn.sys
2014-03-03 03:31:18 -------- d-----w- C:\91Mobile
2014-02-22 11:32:26 -------- d-----w- C:\Users\vedran\AppData\Local\CrashDumps
2014-02-20 22:57:57 1002728 ----a-w- C:\Windows\System32\WinUSBCoInstaller2.dll
2014-02-20 22:57:56 1721576 ----a-w- C:\Windows\System32\WdfCoInstaller01009.dll
2014-02-20 22:55:41 12072 ----a-w- C:\Windows\SysWow64\drivers\MoborobAssDriver64.sys
2014-02-20 22:54:50 67584 ----a-w- C:\ProgramData\ISTask.dll
2014-02-20 22:54:50 -------- d-----w- C:\ProgramData\Moborobo
2014-02-20 22:54:48 -------- d-----w- C:\Program Files (x86)\Moborobo
2014-02-20 22:29:34 -------- d-----w- C:\ProgramData\Informer Technologies, Inc
2014-02-20 22:28:38 -------- d-----w- C:\Users\vedran\AppData\Roaming\Software Informer
2014-02-20 22:28:37 -------- d-----w- C:\Program Files\Software Informer
.
==================== Find3M ====================
.
2014-03-20 04:19:54 0 --sha-w- C:\Windows\System32\dds_log_ad13.cmd
2014-03-19 14:27:15 80184 ----a-w- C:\Windows\System32\drivers\aswStm.sys
2014-03-19 14:27:15 78648 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2014-03-19 14:27:15 65776 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys
2014-03-19 14:27:15 207904 ----a-w- C:\Windows\System32\drivers\aswVmm.sys
2014-03-19 14:27:15 1038072 ----a-w- C:\Windows\System32\drivers\aswSnx.sys
2014-03-19 14:27:14 92544 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
2014-03-14 13:27:45 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2014-03-14 13:27:43 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-02-17 21:01:22 773968 ----a-w- C:\Windows\SysWow64\msvcr100.dll
2014-02-17 21:01:18 421200 ----a-w- C:\Windows\SysWow64\msvcp100.dll
2014-02-17 13:40:15 43152 ----a-w- C:\Windows\avastSS.scr
2014-02-15 21:37:19 331 ----a-w- C:\Start_.cmd
2014-02-15 21:37:17 16712 ----a-w- C:\Windows\System32\drivers\PROCEXP113.SYS
2014-01-08 15:23:45 65536 ----a-w- C:\Windows\System32\sppuinotify.dll
2014-01-08 15:23:21 381952 ----a-w- C:\Windows\System32\sppcommdlg.dll
2014-01-08 15:21:14 349696 ----a-w- C:\Windows\System32\slui.exe
2011-08-27 21:58:38 543744 --sha-w- C:\Windows\System32\hale.exe
.
============= FINISH: 19:32:39,54 ===============

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Ultimate
Boot Device: \Device\HarddiskVolume1
Install Date: 17.4.2011. 13:42:38
System Uptime: 21.3.2014. 16:37:36 (27 hours ago)
.
Motherboard: BIOSTAR Group | | N61PB-M2S
Processor: AMD Sempron(tm) 140 Processor | Socket AM2 | 1485/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 152 GiB total, 78,87 GiB free.
D: is FIXED (NTFS) - 146 GiB total, 146,377 GiB free.
E: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP675: 28.2.2014. 6:10:06 - Windows Defender Checkpoint
RP677: 2.3.2014. 6:29:47 - Windows Defender Checkpoint
RP679: 6.3.2014. 5:14:44 - Windows Defender Checkpoint
RP681: 7.3.2014. 5:33:40 - Windows Defender Checkpoint
RP682: 7.3.2014. 16:44:20 - Removed Vodafone Mobile Connect Lite Huawei.
RP684: 9.3.2014. 17:17:38 - Windows Defender Checkpoint
RP686: 12.3.2014. 22:38:14 - Windows Defender Checkpoint
RP688: 16.3.2014. 17:08:08 - Windows Defender Checkpoint
RP690: 18.3.2014. 19:28:49 - Windows Defender Checkpoint
RP691: 19.3.2014. 15:25:34 - avast! antivirus system restore point
RP693: 19.3.2014. 20:43:09 - Windows Defender Checkpoint
.
==== Installed Programs ======================
.
4shared Desktop
Adobe AIR
Adobe Flash Player 12 ActiveX
Adobe Flash Player 12 Plugin
Adobe Reader X (10.1.9)
Adobe Shockwave Player 11.6
Advertising Center
Avira
Azteca
BearShare
Big Farm
Browse2savee
BrowseToSave 1.74
Chronicles of Albian - The Magic Convention
DefaultTab
DVDVideoSoftTB Toolbar
EazelBar
EbaooykBroiwise
Fantastigames
Fast Search
Free Mp3 Wma Converter V 2.2
Free Video Converter V 3.1
Free YouTube Download version 3.2.1.320
Free YouTube to MP3 Converter version 3.12.1.320
Freemake Video Converter version 4.0.1
Freemake Youtube Mp3 Converter
Google Chrome
Google Earth
Google Toolbar for Internet Explorer
Google Update Helper
Haali Media Splitter
Hotspot Shield 3.11
HPSSupply
Java 7 Update 45
Java Auto Updater
Mahjong Mysteries of the Past
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Professional Edition 2003
Microsoft Silverlight
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Moborobo 2.1.5.858
Mozilla Firefox 27.0.1 (x86 en-US)
Mozilla Maintenance Service
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP2 Parser and SDK
My Farm Life 2
MyPC Backup
Nero 7.10.1.0
Nero 9 Essentials
Nero ControlCenter
Nero Installer
Nero Online Upgrade
Nero StartSmart
Nero StartSmart OEM
neroxml
Nitro Reader 2
NVIDIA Display Control Panel
NVIDIA Drivers
Operation Return Gifts
Optimizer Pro v3.0
OptimizerPro
overland
PC Connectivity Solution
PC Performer
PC Tools Registry Mechanic 11.1
PhotoScape
PlayFree Browser
Pokki
PrivitizeVPN
PVSonyDll
Qtrax (remove only)
Qtrax Player Plugin
Registry Reviver
RummyRoyal.com
SAMSUNG Mobile Composite Device Software
Samsung Mobile Modem Device Software
SAMSUNG Mobile Modem Driver Set
Samsung Mobile phone USB driver Drive Software
SAMSUNG Mobile USB Modem 1.0 Software
SAMSUNG Mobile USB Modem Software
Samsung New PC Studio
SAMSUNG USB Mobile Device Software
SamsungConnectivityCableDriver
Search-Results Toolbar
Search Assistant WebSearch 1.74
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Extended (KB2416472)
Seearchu-NeewTab
Shop for HP Supplies
Skype Toolbars
Skype™ 5.3
Software Informer 1.3.1052.0
SoftwareUpdater
Speed Test 127
Stuart Little 2 PC
swMSM
System Requirements Lab CYRI
Torch
TuneUp Utilities 2012
TuneUp Utilities Language Pack (en-US)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)
VideoFileDownload
Virtual Families
Vodafone Mobile Connect Lite Huawei
WebSparkle 1.0.0
Winamp
Windows Driver Package - Nokia pccsmcfd (10/12/2007 6.85.4.0)
WinPcap 4.1.2
.
==== Event Viewer Messages From Past Week ========
.
22.3.2014. 18:10:02, Error: Service Control Manager [7000] - The Datamngr Coordinator service failed to start due to the following error: The system cannot find the file specified.
22.3.2014. 12:54:58, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.
22.3.2014. 12:54:58, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the lmhosts service.
22.3.2014. 0:42:42, Error: Service Control Manager [7024] - The Background Intelligent Transfer Service service terminated with service-specific error %%-2147024873.
22.3.2014. 0:42:42, Error: Microsoft-Windows-Bits-Client [16392] - The BITS service failed to start. Error 0x80070017.
21.3.2014. 6:38:47, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the MoboroboDeviceService service.
21.3.2014. 17:11:57, Error: Service Control Manager [7034] - The TuneUp Utilities Service service terminated unexpectedly. It has done this 1 time(s).
20.3.2014. 5:22:06, Error: Service Control Manager [7024] - The HomeGroup Listener service terminated with service-specific error %%-2147023143.
20.3.2014. 5:20:33, Error: Service Control Manager [7034] - The DefaultTabSearch service terminated unexpectedly. It has done this 1 time(s).
20.3.2014. 5:19:51, Error: Service Control Manager [7023] - The Superfetch service terminated with the following error: The system cannot find the file specified.
20.3.2014. 5:18:23, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Freemake Improver service to connect.
20.3.2014. 5:18:23, Error: Service Control Manager [7000] - The Freemake Improver service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
20.3.2014. 5:17:43, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Computer Backup (MyPC Backup) service to connect.
20.3.2014. 5:17:43, Error: Service Control Manager [7000] - The Computer Backup (MyPC Backup) service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
19.3.2014. 21:33:11, Error: Service Control Manager [7001] - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: The dependency service or group failed to start.
19.3.2014. 21:33:07, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
19.3.2014. 21:33:06, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
19.3.2014. 21:33:01, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}
19.3.2014. 21:33:01, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}
19.3.2014. 21:32:51, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
19.3.2014. 21:32:38, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}
19.3.2014. 21:32:35, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD CSC DfsC discache HssDRV6 NetBIOS NetBT nsiproxy Psched rdbss spldr tdx Wanarpv6 WfpLwf ws2ifsl
19.3.2014. 21:32:26, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
19.3.2014. 21:32:26, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
19.3.2014. 21:32:26, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.
19.3.2014. 21:32:26, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
19.3.2014. 21:32:26, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
19.3.2014. 21:32:26, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error: A device attached to the system is not functioning.
19.3.2014. 21:32:26, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
19.3.2014. 21:32:26, Error: Service Control Manager [7001] - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
19.3.2014. 21:32:26, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning.
19.3.2014. 21:32:26, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
19.3.2014. 17:24:18, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the BITS service.
19.3.2014. 17:16:39, Error: Service Control Manager [7001] - The Windows Firewall service depends on the Windows Firewall Authorization Driver service which failed to start because of the following error: Cannot create a file when that file already exists.
19.3.2014. 17:16:39, Error: Service Control Manager [7000] - The Windows Firewall Authorization Driver service failed to start due to the following error: Cannot create a file when that file already exists.
19.3.2014. 15:36:17, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD aswRdr aswRvrt aswSnx aswSP aswVmm CSC DfsC discache HssDRV6 NetBIOS NetBT nsiproxy Psched rdbss spldr tdx Wanarpv6 WfpLwf ws2ifsl
19.3.2014. 15:34:09, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the FreemakeVideoCapture service.
19.3.2014. 15:25:09, Error: Service Control Manager [7000] - The hhzsdunn service failed to start due to the following error: Cannot create a file when that file already exists.
18.3.2014. 14:07:54, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the RasMan service.
17.3.2014. 12:46:12, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the PlugPlay service.
16.3.2014. 18:49:01, Error: Service Control Manager [7022] - The Windows Update service hung on starting.
.
==== End Of File ===========================



Poslao: 22 Mar 2014 21:42
Idi na vrh
rip
  • argus  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 27 Apr 2008
  • Poruke: 9160
  • Gde živiš: Prokuplje

Pozdrav.

System ti je bas u losem stanju.





Preuzmi sUBs-ov ComboFix sa sledeće adrese na Desktop:


Bleeping Computer
Klikni desnim tasterom na link i odaberi opciju Save Target As... (Save Link As..., Save Linked Content As... ili sličnu);
Kada se otvori dijalog za izbor lokacije na kojoj treba sačuvati file, odaberi Desktop i klikni Save.



Kada preuzimanje programa bude završeno:
deaktiviraj zaštitni softver (uputstvo);
zatvori pokrenute programe;
dvoklikom pokreni program ComboFix;
u prozoru koji se otvori klikni "I Agree".
U toku rada, ComboFix će:proveriti postoji li novija verzija programa:
klikni Yes ako bude ponuđeno preuzimanje iste.ako Recovery Console nije instalirana, ponuditi instalaciju:
obavezno prihvati klikom na Yes i isprati postupak.postaviti/dati određeni broj upita/obaveštenja:
prihvati klikom na Yes ili OK.po potrebi, restartovati Windows (više puta);
na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

Iskopiraj izveštaj koji je ComboFix napravio u temu na forumu:
klikni desnim tasterom miša u prozor Notepad-a i izaberi Select All;
klikni desnim tasterom miša na obeleženi tekst i izaberi Copy;
klikni desnim tasterom miša u polje za pisanje poruke i izaberi Paste.


Napomena:Izveštaj će biti sačuvan pod nazivom ComboFix.txt na sistemskoj particiji (tipična lokacija: C:\ComboFix.txt);
Ukoliko nakon slanja poruke primetiš da izveštaj nije kompletan, iskoristi opciju Prikači fajl za prilaganje file-a C:\ComboFix.txt uz poruku;
Nemoj kliktati u okviru ComboFix prozora dok radi jer to može usporiti rad alata;
Nemoj ponovo pokretati ComboFix na svoju ruku - javi se u temi bilo kakav problem da imaš tokom prvog pokretanja alata;
Ako nakon restarta dobijaš grešku prilikom startovanja pojedinih programa da su označeni za brisanje (Illegal operation attempted on a registry key that has been marked for deletion), onda ponovo restartuj sistem i to ce rešiti problem.



Poslao: 22 Mar 2014 22:52
Idi na vrh
offline
  • Pridružio: 22 Mar 2014
  • Poruke: 13

# AdwCleaner v3.022 - Report created 22/03/2014 at 22:04:49
# Updated 13/03/2014 by Xplode
# Operating System : Windows 7 Ultimate (64 bits)
# Username : vedran - VEDRAN-PC
# Running from : C:\Users\vedran\Downloads\AdwCleaner(1).exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Users\vedran\AppData\Local\Pokki

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\privitizevpn_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\updateWebSparkle_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\updateWebSparkle_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\utilWebSparkle_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\utilWebSparkle_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKCU\Software\Pokki

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.7600.16800


-\\ Mozilla Firefox v27.0.1 (en-US)

[ File : C:\Users\vedran\AppData\Roaming\Mozilla\Firefox\Profiles\2y9pgrkr.default\prefs.js ]


-\\ Google Chrome v33.0.1750.154

[ File : C:\Users\vedran\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [100608 octets] - [22/03/2014 21:45:01]
AdwCleaner[R1].txt - [1630 octets] - [22/03/2014 22:03:52]
AdwCleaner[S0].txt - [90696 octets] - [22/03/2014 21:46:57]
AdwCleaner[S1].txt - [1532 octets] - [22/03/2014 22:04:49]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1592 octets] ##########

Poslao: 22 Mar 2014 23:03
Idi na vrh
rip
  • argus  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 27 Apr 2008
  • Poruke: 9160
  • Gde živiš: Prokuplje

Adwarecleaner si pokretao vise puta tako da nemam uvid sta je brisao.

Pokreni Combofix po uputstvu.

Poslao: 22 Mar 2014 23:26
Idi na vrh
offline
  • Pridružio: 22 Mar 2014
  • Poruke: 13

pokrenula sam combofix ali mi ne dolazi nikakav izvjestaj

Poslao: 22 Mar 2014 23:28
Idi na vrh
rip
  • argus  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 27 Apr 2008
  • Poruke: 9160
  • Gde živiš: Prokuplje

Sacekaj da zavrsi skeniranje i najverovatnije ce doci do restarta racunara.

Ako ne izbaci log na destop, pogledaj u C:\Combofix.txt

Poslao: 24 Mar 2014 22:48
Idi na vrh
offline
  • Pridružio: 22 Mar 2014
  • Poruke: 13

meni nema nikakvog izvjestaja nigdje, a i prije nego sto se zavrsi s skeniranje javlja mi neki eror

Poslao: 25 Mar 2014 10:45
Idi na vrh
rip
  • argus  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 27 Apr 2008
  • Poruke: 9160
  • Gde živiš: Prokuplje

Preuzmi Farbar-ov Farbar Recovery Scan Tool () sa ove adrese na Desktop:
Postoji 32bit. i 64bit.-na verzija. Potrebno je preuzeti verziju koja je kompatibilna sa tvojim sistemom.
Ako nisi siguran koja verzija se odnosi na tvoj sistem, preuzmi ih obe i pokreni. Samo jedan od njih će raditi na tvom sistemu, to će biti prava verzija.

dvoklikom pokreni program, kada se alat pokrene klikni Yes na disclaimer prozor;
pričekati koji trenutak dok alat proverava postoji li novija verzija;
klikni na dugme Scan;
po završetku skeniranja, alat će formirati izveštaj (FRST.txt) u isti direktorijum gde je FRST alat sačuvan;
iskopiraj sadržaj FRST.txt izveštaja u poruku;
po prvom pokretanju, alat bi trebao formirati i dodatni izveštaj (Addition.txt);
okači Addition.txt izveštaj uz poruku koristeći opciju Prikači fajl

Poslao: 26 Mar 2014 23:44
Idi na vrh
offline
  • Pridružio: 22 Mar 2014
  • Poruke: 13

Napisano: 26 Mar 2014 23:43

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by vedran (administrator) on VEDRAN-PC on 26-03-2014 23:40:23
Running from C:\Users\vedran\Downloads
Windows 7 Ultimate (X64) OS Language: English(US)
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: [Link mogu videti samo ulogovani korisnici]
Download link for 64-Bit Version: [Link mogu videti samo ulogovani korisnici]
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: [Link mogu videti samo ulogovani korisnici]

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Informer Technologies, Inc.) C:\Program Files\Software Informer\softinfo.exe
(Informer Technologies, Inc.) C:\Program Files\Software Informer\softinfo.exe
(Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe
() C:\Windows\sysdriver32_.exe
() C:\Windows\systemup.exe
() C:\Windows\l1rezerv.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Ellora Assets Corp.) C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe
() C:\Program Files (x86)\Moborobo\MoboroboDeviceService.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(Nitro PDF Software) C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe
(Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe
(Informer Technologies, Inc.) C:\Program Files\Software Informer\softinfo.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesApp64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
() C:\Program Files (x86)\WebSparkle\updateWebSparkle.exe
() C:\Program Files (x86)\WebSparkle\bin\utilWebSparkle.exe
(Microsoft Corporation) C:\Windows\system32\AUDIODG.EXE
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe
() C:\Windows\System32\hale.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\system32\cmd.exe
(Microsoft Corporation) C:\Windows\system32\icacls.exe


==================== Registry (Whitelisted) ==================

HKLM-x32\...\Run: [MobileConnect] - C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe [2060288 2008-03-13] (Vodafone)
HKLM-x32\...\Run: [wxpdrv] - C:\Windows\services32.exe [1204736 2011-10-31] (Cronosoft)
HKLM-x32\...\Run: [sysdriver32.exe] - C:\Windows\sysdriver32.exe [257024 2011-11-03] ()
HKLM-x32\...\Run: [sysdriver32_.exe] - C:\Windows\sysdriver32_.exe [257024 2011-11-03] ()
HKLM-x32\...\Run: [7346280.exe] - "C:\Users\vedran\AppData\Local\Temp\7346280.exe"
HKLM-x32\...\Run: [1536238.exe] - "C:\Users\vedran\AppData\Local\Temp\1536238.exe"
HKLM-x32\...\Run: [systemup] - C:\Windows\systemup.exe [137728 2011-11-08] ()
HKLM-x32\...\Run: [l1rezerv.exe] - C:\Windows\l1rezerv.exe [232960 2011-11-08] ()
HKLM-x32\...\Run: [tray_ico0] - C:\Windows\update.tray-9-0\svchost.exe [1204736 2011-10-31] (Cronosoft)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [PrivitizeVPN] - C:\Program Files (x86)\PrivitizeVPN\PrivitizeVPN.exe [196784 2013-02-22] (OOO Industry)
HKLM-x32\...\Run: [Boot Cleanup] - C:\Program Files\CCleaner\Bin\CCleaner.exe [151040 2013-05-03] (Piriform Ltd)
HKLM-x32\...\Run: [SSDMonitor] - C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe [105120 2012-08-21] (PC Tools)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] - "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
HKLM-x32\...\Run: [tray_ico] - [X]
HKLM-x32\...\Run: [tray_ico1] - C:\Windows\update.tray-7-0\svchost.exe [1204736 2011-10-31] (Cronosoft)
HKLM-x32\...\Run: [tray_ico2] - C:\Windows\update.tray-8-0\svchost.exe [1204736 2011-10-31] (Cronosoft)
HKLM-x32\...\Run: [tray_ico3] - [X]
HKLM-x32\...\Run: [tray_ico4] - [X]
HKLM-x32\...\Run: [Avira Systray] - C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
HKLM\...\Runonce: [c717210] - "C:\Windows\System32\cmd.exe" /C START /MIN RD /S /Q "C:\ProgramData\Microsoft\Windows\Pending"^&EXIT
HKU\.DEFAULT\...\Run: [Exetender] - "C:\Program Files (x86)\FantastiGames\GPlayer.exe" /runonstartup
HKU\S-1-5-21-2003735831-4074796972-7830778-1000\...\Run: [OM2_Monitor] - "C:\Program Files (x86)\OLYMPUS\OLYMPUS Master 2\MMonitor.exe" -NoStart
HKU\S-1-5-21-2003735831-4074796972-7830778-1000\...\Run: [uTorrent] - "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
HKU\S-1-5-21-2003735831-4074796972-7830778-1000\...\Run: [GoogleChromeAutoLaunch_E4B601A048BE9A47AC3681DB3BDC5E9F] - "C:\Users\vedran\AppData\Local\Torch\Application\torch.exe" --no-startup-window
HKU\S-1-5-21-2003735831-4074796972-7830778-1000\...\Run: [Boot Cleanup] - C:\Users\vedran\AppData\Local\CCleaner\Bin\CCleaner.exe [151040 2013-05-03] (Piriform Ltd)
HKU\S-1-5-21-2003735831-4074796972-7830778-1000\...\Run: [BrowserUid] - C:\Users\vedran\AppData\Local\PlayFree Browser\Application\PlayFreeBrowser.exe [886568 2014-02-26] (MyPlayCity, Inc.)
HKU\S-1-5-21-2003735831-4074796972-7830778-1000\...\Run: [Exetender] - "C:\Program Files (x86)\FantastiGames\GPlayer.exe" /runonstartup
HKU\S-1-5-21-2003735831-4074796972-7830778-1000\...\Run: [MPCBrowser Update] - C:\Users\vedran\AppData\Local\MPCBrowser\Update\MPCBrowserUpdate.exe [120256 2014-02-26] (MyPlayCity, Inc.)
HKU\S-1-5-21-2003735831-4074796972-7830778-1000\...\Run: [GoogleChromeAutoLaunch_BB3C84E317859ACDEF883F30197A9F9B] - C:\Users\vedran\AppData\Local\PlayFree Browser\Application\playfreebrowser.exe [886568 2014-02-26] (MyPlayCity, Inc.)
HKU\S-1-5-21-2003735831-4074796972-7830778-1000\...\Run: [msdtc.exe] - C:\Users\vedran\AppData\Roaming\DMCache\msdtc.exe [167424 2013-10-30] (Microsoft Corporation)
HKU\S-1-5-21-2003735831-4074796972-7830778-1000\...\Run: [wlrmdr.exe] - C:\Users\vedran\AppData\Roaming\DMCache\slui.exe [64982 2013-11-15] ()
HKU\S-1-5-21-2003735831-4074796972-7830778-1000\...\Run: [Software Informer] - C:\Program Files\Software Informer\softinfo.exe [1484800 2014-02-19] (Informer Technologies, Inc.)
SubSystems: [Windows] ATTENTION! ====> ZeroAccess

==================== Internet (Whitelisted) ====================

ProxyServer: http=127.0.0.1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = [Link mogu videti samo ulogovani korisnici]
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2002} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2002} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}
SearchScopes: HKLM-x32 - {3d29c02b-bf3e-4d3b-8a7a-e0e7d0f6dbab} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2002} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}
SearchScopes: HKLM-x32 - {EF4D31BC-72C4-4B47-B1C7-DE12A4F68623} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}
SearchScopes: HKCU - {3d29c02b-bf3e-4d3b-8a7a-e0e7d0f6dbab} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2002} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}
BHO: Speed Test 127 - {11C8C9C0-D918-44C0-8B5E-D297DA42F2C7} - C:\Program Files (x86)\Speed Test 127\ScriptHost64.dll (BestOffers)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll No File
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg64.dll (Google Inc.)
BHO-x32: Speed Test 127 - {11C8C9C0-D918-44C0-8B5E-D297DA42F2C7} - C:\Program Files (x86)\Speed Test 127\ScriptHost.dll (BestOffers)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll No File
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Freemake.YoutubeButton - {e9e8eb35-ff77-455d-b677-91e5e4fc06c2} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: Browse2savee - {EB52E2E7-953C-B183-FDB7-7ED8A12C9BD4} - C:\ProgramData\Browse2savee\516e622b3f175.dll No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll No File
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll No File
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} [Link mogu videti samo ulogovani korisnici]
DPF: HKLM-x32 {6A060448-60F9-11D5-A6CD-0002B31F7455}
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} [Link mogu videti samo ulogovani korisnici]
DPF: HKLM-x32 {E6F480FC-BD44-4CBA-B74A-89AF7842937D} [Link mogu videti samo ulogovani korisnici]
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL No File
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
Winsock: Catalog5 01 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5 02 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog9 01 mswsock.dll File Not found ()
Winsock: Catalog9 02 mswsock.dll File Not found ()
Winsock: Catalog9 03 mswsock.dll File Not found ()
Winsock: Catalog9 04 mswsock.dll File Not found ()
Winsock: Catalog9 05 mswsock.dll File Not found ()
Winsock: Catalog9 06 mswsock.dll File Not found ()
Winsock: Catalog9 07 mswsock.dll File Not found ()
Winsock: Catalog9 08 mswsock.dll File Not found ()
Winsock: Catalog9 09 mswsock.dll File Not found ()
Winsock: Catalog9 10 mswsock.dll File Not found ()
Winsock: Catalog5-x64 01 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5-x64 02 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog9-x64 01 mswsock.dll File Not found ()
Winsock: Catalog9-x64 02 mswsock.dll File Not found ()
Winsock: Catalog9-x64 03 mswsock.dll File Not found ()
Winsock: Catalog9-x64 04 mswsock.dll File Not found ()
Winsock: Catalog9-x64 05 mswsock.dll File Not found ()
Winsock: Catalog9-x64 06 mswsock.dll File Not found ()
Winsock: Catalog9-x64 07 mswsock.dll File Not found ()
Winsock: Catalog9-x64 08 mswsock.dll File Not found ()
Winsock: Catalog9-x64 09 mswsock.dll File Not found ()
Winsock: Catalog9-x64 10 mswsock.dll File Not found ()
Winsock: Catalog9-x64 11 %SystemRoot%\system32\mswsock.dll [320000] ()
Winsock: Catalog9-x64 12 %SystemRoot%\system32\mswsock.dll [320000] ()
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\vedran\AppData\Roaming\Mozilla\Firefox\Profiles\2y9pgrkr.default
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin-x32: @exent.com/npExentCtl,version=7.0.0.0 - C:\Program Files (x86)\FantastiGames\npExentCtl.dll No File
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF - C:\Program Files (x86)\Nitro PDF\Reader 2\npnitromozilla.dll ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @omaha.playfree.org/MPCBrowser Update;version=3 - C:\Users\vedran\AppData\Local\MPCBrowser\Update\1.3.27.0\npGoogleUpdate3.dll (MyPlayCity, Inc.)
FF Plugin HKCU: @omaha.playfree.org/MPCBrowser Update;version=9 - C:\Users\vedran\AppData\Local\MPCBrowser\Update\1.3.27.0\npGoogleUpdate3.dll (MyPlayCity, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\vedran\AppData\Roaming\Mozilla\Firefox\Profiles\2y9pgrkr.default\searchplugins\allgameshome-search.xml
FF SearchPlugin: C:\Users\vedran\AppData\Roaming\Mozilla\Firefox\Profiles\2y9pgrkr.default\searchplugins\allgameshome.xml
FF SearchPlugin: C:\Users\vedran\AppData\Roaming\Mozilla\Firefox\Profiles\2y9pgrkr.default\searchplugins\myplaycity.xml
FF Extension: 4shared Desktop Plugin - C:\Users\vedran\AppData\Roaming\Mozilla\Firefox\Profiles\2y9pgrkr.default\Extensions\4sharedCopyLinks.xpi [2013-03-14]
FF Extension: WebSparkle - C:\Users\vedran\AppData\Roaming\Mozilla\Firefox\Profiles\2y9pgrkr.default\Extensions\{058899d6-9704-4de3-aae7-17e9fc44c761}.xpi [2014-03-23]
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\vedran\AppData\Roaming\Mozilla\Firefox\Profiles\2y9pgrkr.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi [2012-11-22]
FF Extension: Skype extension - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-02-15]
FF Extension: Hotspot Shield Helper (Please allow this installation) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afurladvisor@anchorfree.com [2014-02-15]
FF HKLM-x32\...\Firefox\Extensions: [fmdownloader@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Youtube Mp3 Converter\BrowserPlugin\Firefox\fmdownloader@gmail.com\
FF Extension: Freemake Video Downloader Plugin - C:\Program Files (x86)\Freemake\Freemake Youtube Mp3 Converter\BrowserPlugin\Firefox\fmdownloader@gmail.com\ []
FF HKLM-x32\...\Firefox\Extensions: [ytfmdownloader@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Youtube Mp3 Converter\BrowserPlugin\Firefox\ytfmdownloader@gmail.com\
FF Extension: Freemake Youtube Download Button - C:\Program Files (x86)\Freemake\Freemake Youtube Mp3 Converter\BrowserPlugin\Firefox\ytfmdownloader@gmail.com\ []
FF HKLM-x32\...\Firefox\Extensions: [fmconverter@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
FF Extension: Freemake Video Converter Plugin - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ []
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome:
=======
CHR DefaultSearchProvider: Eazel
CHR DefaultSearchURL: [Link mogu videti samo ulogovani korisnici]
CHR DefaultNewTabURL:
CHR Extension: (Google Docs) - C:\Users\vedran\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-17]
CHR Extension: (Google Drive) - C:\Users\vedran\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-17]
CHR Extension: (YouTube) - C:\Users\vedran\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-17]
CHR Extension: (Freemake Video Downloader) - C:\Users\vedran\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpegkgagfojjbcpkihigfmkojdmmimdf [2013-06-27]
CHR Extension: (Google Search) - C:\Users\vedran\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-17]
CHR Extension: (Freemake Youtube Download Button) - C:\Users\vedran\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehgldbbpchgpcfagfpfjgoomddhccfgh [2013-06-27]
CHR Extension: (WebSparkle) - C:\Users\vedran\AppData\Local\Google\Chrome\User Data\Default\Extensions\ikgojpdbiniccokkgadmdheobjfdbbcg [2014-03-23]
CHR Extension: (Freemake Video Converter) - C:\Users\vedran\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj [2013-06-27]
CHR Extension: (DVDVideoSoft Browser Extension) - C:\Users\vedran\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2013-06-27]
CHR Extension: (Google Wallet) - C:\Users\vedran\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-17]
CHR Extension: (Gmail) - C:\Users\vedran\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-17]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [2013-04-14]
CHR HKLM-x32\...\Chrome\Extension: [bpegkgagfojjbcpkihigfmkojdmmimdf] - C:\Program Files (x86)\Freemake\Freemake Youtube Mp3 Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2013-04-28]
CHR HKLM-x32\...\Chrome\Extension: [ddkpepdilbfaccbiljmaflabkcbgjfin] - C:\Program Files (x86)\Search Results Toolbar\Datamngr\chromeExtension.crx [2013-04-28]
CHR HKLM-x32\...\Chrome\Extension: [ehgldbbpchgpcfagfpfjgoomddhccfgh] - C:\Program Files (x86)\Freemake\Freemake Youtube Mp3 Converter\BrowserPlugin\Chrome\ChromeYoutubePlugin.crx [2013-04-28]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2013-04-28]
CHR HKLM-x32\...\Chrome\Extension: [ikgojpdbiniccokkgadmdheobjfdbbcg] - C:\Program Files (x86)\WebSparkle\ikgojpdbiniccokkgadmdheobjfdbbcg.crx [2014-03-23]
CHR HKLM-x32\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2013-04-28]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-04-28]

==================== Services (Whitelisted) =================

R2 AsusACPI; C:\Windows\system32\wfxsvc.dll [5120 2009-07-14] (Iomega)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [101888 2013-04-25] (Freemake)
R2 FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [9216 2013-04-01] (Ellora Assets Corp.)
S2 HPSLPSVC; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S2 iAimTV6; C:\Windows\system32\dlcg_device.dll [5120 2009-07-14] (Iomega)
R2 MoboroboDeviceService; C:\Program Files (x86)\Moborobo\MoboroboDeviceService.exe [70952 2014-01-14] ()
R2 NitroReaderDriverReadSpool2; C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe [343032 2012-02-08] (Nitro PDF Software)
R2 PCToolsSSDMonitorSvc; C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [794272 2012-08-21] (PC Tools)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe [2143072 2012-05-29] (TuneUp Software)
R2 Update WebSparkle; C:\Program Files (x86)\WebSparkle\updateWebSparkle.exe [348448 2014-03-26] ()
R2 Util WebSparkle; C:\Program Files (x86)\WebSparkle\bin\utilWebSparkle.exe [348448 2014-03-26] ()
S2 vaiomediaplatform-photoserver-appserver; C:\Windows\system32\roxmediadb9.dll [5120 2009-07-14] (Iomega)
S2 VAIOMediaPlatform-PhotoServer-HTTP; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 VMCService; C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe [24576 2008-03-13] (Vodafone)
S2 Avira.OE.ServiceHost; "C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe" [X]
S3 McComponentHostService; "C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe" [X]
S2 PEVSystemStart; "C:\32788R22FWJFW\pev.3XE" EXEC /i CSCRIPT.exe //NOLOGO //E:VBSCRIPT //B //T:15 "C:\32788R22FWJFW\KNetSvcs.vbs"

==================== Drivers (Whitelisted) ====================

U5 aswMonFlt; C:\Windows\System32\Drivers\aswMonFlt.sys [78648 2014-03-19] (AVAST Software)
U5 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-03-19] ()
U5 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1038072 2014-03-19] (AVAST Software)
S4 aswSP; C:\Windows\System32\Drivers\aswSP.sys [421704 2014-03-19] (AVAST Software)
U5 aswStm; C:\Windows\System32\Drivers\aswStm.sys [80184 2014-03-19] (AVAST Software)
U5 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-03-19] ()
R1 HssDRV6; C:\Windows\System32\DRIVERS\hssdrv6.sys [46792 2013-07-24] (AnchorFree Inc.)
U5 npf; C:\Windows\System32\Drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)
U3 PROCEXP113; C:\Windows\system32\Drivers\PROCEXP113.SYS [16712 2014-03-24] (Sysinternals - [Link mogu videti samo ulogovani korisnici])
R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-04-24] (Anchorfree Inc.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys [11856 2012-05-08] (TuneUp Software)
R1 wStLib64; C:\Windows\System32\drivers\wStLib64.sys [61120 2014-03-22] (StdLib)
U5 wxpdrivers; C:\Windows\update.1\svchost.exe [1204736 2011-10-31] (Cronosoft)
S1 aczaiywv; \??\C:\Windows\system32\drivers\aczaiywv.sys [X]
S1 ahbjsqzb; \??\C:\Windows\system32\drivers\ahbjsqzb.sys [X]
S1 aitjqshv; \??\C:\Windows\system32\drivers\aitjqshv.sys [X]
S1 amdjekvs; \??\C:\Windows\system32\drivers\amdjekvs.sys [X]
S1 atajcetg; \??\C:\Windows\system32\drivers\atajcetg.sys [X]
S1 audhrgry; \??\C:\Windows\system32\drivers\audhrgry.sys [X]
S1 avfgyfsc; \??\C:\Windows\system32\drivers\avfgyfsc.sys [X]
S1 aychafcq; \??\C:\Windows\system32\drivers\aychafcq.sys [X]
S1 bfpkvffl; \??\C:\Windows\system32\drivers\bfpkvffl.sys [X]
S1 bgppadqf; \??\C:\Windows\system32\drivers\bgppadqf.sys [X]
S1 bjjlxfkd; \??\C:\Windows\system32\drivers\bjjlxfkd.sys [X]
S1 bxpfgoig; \??\C:\Windows\system32\drivers\bxpfgoig.sys [X]
S1 bzpoxrpx; \??\C:\Windows\system32\drivers\bzpoxrpx.sys [X]
S1 cbwcymtu; \??\C:\Windows\system32\drivers\cbwcymtu.sys [X]
S1 cdrbjytk; \??\C:\Windows\system32\drivers\cdrbjytk.sys [X]
S1 cekcsypw; \??\C:\Windows\system32\drivers\cekcsypw.sys [X]
S1 cswpgeou; \??\C:\Windows\system32\drivers\cswpgeou.sys [X]
S1 ctmmkenz; \??\C:\Windows\system32\drivers\ctmmkenz.sys [X]
S1 ddoynkvh; \??\C:\Windows\system32\drivers\ddoynkvh.sys [X]
S1 dgwqbycy; \??\C:\Windows\system32\drivers\dgwqbycy.sys [X]
S1 dheqkdty; \??\C:\Windows\system32\drivers\dheqkdty.sys [X]
S1 dixlmrkh; \??\C:\Windows\system32\drivers\dixlmrkh.sys [X]
S1 drqidbhj; \??\C:\Windows\system32\drivers\drqidbhj.sys [X]
S1 dvqpxcia; \??\C:\Windows\system32\drivers\dvqpxcia.sys [X]
S1 dvzspiss; \??\C:\Windows\system32\drivers\dvzspiss.sys [X]
S1 ebugeqrd; \??\C:\Windows\system32\drivers\ebugeqrd.sys [X]
S1 eeesbokw; \??\C:\Windows\system32\drivers\eeesbokw.sys [X]
S1 eekasamo; \??\C:\Windows\system32\drivers\eekasamo.sys [X]
S1 egmqidwo; \??\C:\Windows\system32\drivers\egmqidwo.sys [X]
S1 ekojwcuj; \??\C:\Windows\system32\drivers\ekojwcuj.sys [X]
S1 encxewum; \??\C:\Windows\system32\drivers\encxewum.sys [X]
S1 eoftyzov; \??\C:\Windows\system32\drivers\eoftyzov.sys [X]
S1 eslijtxa; \??\C:\Windows\system32\drivers\eslijtxa.sys [X]
S1 etklyimd; \??\C:\Windows\system32\drivers\etklyimd.sys [X]
S1 eyxbtyrr; \??\C:\Windows\system32\drivers\eyxbtyrr.sys [X]
S1 faaabzpm; \??\C:\Windows\system32\drivers\faaabzpm.sys [X]
S1 fbqwbxvc; \??\C:\Windows\system32\drivers\fbqwbxvc.sys [X]
S1 fhclpdvu; \??\C:\Windows\system32\drivers\fhclpdvu.sys [X]
S1 fialegxd; \??\C:\Windows\system32\drivers\fialegxd.sys [X]
S1 fqevxmtd; \??\C:\Windows\system32\drivers\fqevxmtd.sys [X]
S1 fqzkokze; \??\C:\Windows\system32\drivers\fqzkokze.sys [X]
S1 gblducjz; \??\C:\Windows\system32\drivers\gblducjz.sys [X]
S1 gcqztrsm; \??\C:\Windows\system32\drivers\gcqztrsm.sys [X]
S1 geqgpmcy; \??\C:\Windows\system32\drivers\geqgpmcy.sys [X]
S1 gjggsnbh; \??\C:\Windows\system32\drivers\gjggsnbh.sys [X]
S1 gjobbtuu; \??\C:\Windows\system32\drivers\gjobbtuu.sys [X]
S1 gnudlllq; \??\C:\Windows\system32\drivers\gnudlllq.sys [X]
S1 gpkvuoaa; \??\C:\Windows\system32\drivers\gpkvuoaa.sys [X]
S1 gpkybxbk; \??\C:\Windows\system32\drivers\gpkybxbk.sys [X]
S1 gsnxjgzk; \??\C:\Windows\system32\drivers\gsnxjgzk.sys [X]
S1 gstvopua; \??\C:\Windows\system32\drivers\gstvopua.sys [X]
S1 gtvffalc; \??\C:\Windows\system32\drivers\gtvffalc.sys [X]
S1 guermvvs; \??\C:\Windows\system32\drivers\guermvvs.sys [X]
S1 gutyjkeu; \??\C:\Windows\system32\drivers\gutyjkeu.sys [X]
S1 gvmzlyjl; \??\C:\Windows\system32\drivers\gvmzlyjl.sys [X]
S1 gwjbwpgr; \??\C:\Windows\system32\drivers\gwjbwpgr.sys [X]
S1 hadgavkm; \??\C:\Windows\system32\drivers\hadgavkm.sys [X]
S1 hgruwrxv; \??\C:\Windows\system32\drivers\hgruwrxv.sys [X]
S1 hmmuyobu; \??\C:\Windows\system32\drivers\hmmuyobu.sys [X]
S1 ibcifnlc; \??\C:\Windows\system32\drivers\ibcifnlc.sys [X]
S1 immdssoy; \??\C:\Windows\system32\drivers\immdssoy.sys [X]
S1 itkehngm; \??\C:\Windows\system32\drivers\itkehngm.sys [X]
S1 izvaipas; \??\C:\Windows\system32\drivers\izvaipas.sys [X]
S1 jbwweexf; \??\C:\Windows\system32\drivers\jbwweexf.sys [X]
S1 jhogjmgm; \??\C:\Windows\system32\drivers\jhogjmgm.sys [X]
S1 jvhefywd; \??\C:\Windows\system32\drivers\jvhefywd.sys [X]
S1 kdkjqvvk; \??\C:\Windows\system32\drivers\kdkjqvvk.sys [X]
S1 kpeguxql; \??\C:\Windows\system32\drivers\kpeguxql.sys [X]
S1 kteigpga; \??\C:\Windows\system32\drivers\kteigpga.sys [X]
S1 lbigmusp; \??\C:\Windows\system32\drivers\lbigmusp.sys [X]
S1 ldhdvmxv; \??\C:\Windows\system32\drivers\ldhdvmxv.sys [X]
S1 llnzndpt; \??\C:\Windows\system32\drivers\llnzndpt.sys [X]
S1 lmpnkosr; \??\C:\Windows\system32\drivers\lmpnkosr.sys [X]
S1 ltaqoqqa; \??\C:\Windows\system32\drivers\ltaqoqqa.sys [X]
S1 luwavqpw; \??\C:\Windows\system32\drivers\luwavqpw.sys [X]
S1 lvvrwxjs; \??\C:\Windows\system32\drivers\lvvrwxjs.sys [X]
S1 mavswkai; \??\C:\Windows\system32\drivers\mavswkai.sys [X]
S1 mxdxqmzm; \??\C:\Windows\system32\drivers\mxdxqmzm.sys [X]
S1 nibnwgav; \??\C:\Windows\system32\drivers\nibnwgav.sys [X]
S1 nmzcithh; \??\C:\Windows\system32\drivers\nmzcithh.sys [X]
S1 ntimxcsl; \??\C:\Windows\system32\drivers\ntimxcsl.sys [X]
S1 nvfkswah; \??\C:\Windows\system32\drivers\nvfkswah.sys [X]
S1 nxqhhqud; \??\C:\Windows\system32\drivers\nxqhhqud.sys [X]
S1 odttghon; \??\C:\Windows\system32\drivers\odttghon.sys [X]
S1 oeugmnaw; \??\C:\Windows\system32\drivers\oeugmnaw.sys [X]
S1 ofeqjuow; \??\C:\Windows\system32\drivers\ofeqjuow.sys [X]
S1 ogcgsdzl; \??\C:\Windows\system32\drivers\ogcgsdzl.sys [X]
S1 pfpiexlm; \??\C:\Windows\system32\drivers\pfpiexlm.sys [X]
S1 polztgny; \??\C:\Windows\system32\drivers\polztgny.sys [X]
S1 ppxerrgg; \??\C:\Windows\system32\drivers\ppxerrgg.sys [X]
S1 psmtacre; \??\C:\Windows\system32\drivers\psmtacre.sys [X]
S1 pwwayjlx; \??\C:\Windows\system32\drivers\pwwayjlx.sys [X]
S1 qctapsfv; \??\C:\Windows\system32\drivers\qctapsfv.sys [X]
S1 qeezmpvm; \??\C:\Windows\system32\drivers\qeezmpvm.sys [X]
S1 qhdxecoa; \??\C:\Windows\system32\drivers\qhdxecoa.sys [X]
S1 qkfiwpkm; \??\C:\Windows\system32\drivers\qkfiwpkm.sys [X]
S1 saduavcz; \??\C:\Windows\system32\drivers\saduavcz.sys [X]
S1 sewtjomv; \??\C:\Windows\system32\drivers\sewtjomv.sys [X]
S1 sliaqzbu; \??\C:\Windows\system32\drivers\sliaqzbu.sys [X]
S1 tigsdhvl; \??\C:\Windows\system32\drivers\tigsdhvl.sys [X]
S1 tjmnuuls; \??\C:\Windows\system32\drivers\tjmnuuls.sys [X]
S1 trgqfbqh; \??\C:\Windows\system32\drivers\trgqfbqh.sys [X]
S1 ujwtrxlv; \??\C:\Windows\system32\drivers\ujwtrxlv.sys [X]
S1 vrkjwmbo; \??\C:\Windows\system32\drivers\vrkjwmbo.sys [X]
S1 vvyhfcei; \??\C:\Windows\system32\drivers\vvyhfcei.sys [X]
S1 whjmobue; \??\C:\Windows\system32\drivers\whjmobue.sys [X]
S1 wrozzueo; \??\C:\Windows\system32\drivers\wrozzueo.sys [X]
S2 X5XSEx_Pr143; \??\C:\Program Files (x86)\FantastiGames\X5XSEx_Pr143.Sys [X]
S1 zchaffza; \??\C:\Windows\system32\drivers\zchaffza.sys [X]

==================== NetSvcs (Whitelisted) ===================

NETSVC: iAimTV6 -> C:\Windows\system32\dlcg_device.dll (Iomega) ATTENTION! ====> ZeroAccess
NETSVC: AsusACPI -> C:\Windows\system32\wfxsvc.dll (Iomega) ATTENTION! ====> ZeroAccess
NETSVC: vaiomediaplatform-photoserver-appserver -> C:\Windows\system32\roxmediadb9.dll (Iomega) ATTENTION! ====> ZeroAccess

==================== One Month Created Files and Folders ========

2014-03-26 23:40 - 2014-03-26 23:40 - 00033682 _____ () C:\Users\vedran\Downloads\FRST.txt
2014-03-26 23:40 - 2014-03-26 23:40 - 00000000 ____D () C:\FRST
2014-03-26 23:39 - 2014-03-26 23:40 - 02157056 _____ (Farbar) C:\Users\vedran\Downloads\FRST64.exe
2014-03-26 23:39 - 2014-03-26 23:39 - 01145856 _____ (Farbar) C:\Users\vedran\Downloads\FRST.exe
2014-03-24 22:44 - 2014-03-24 22:44 - 00016712 _____ (Sysinternals - [Link mogu videti samo ulogovani korisnici]) C:\Windows\system32\Drivers\PROCEXP113.SYS
2014-03-23 22:45 - 2014-03-24 22:44 - 00000000 ___SD () C:\32788R22FWJFW
2014-03-23 18:38 - 2014-03-23 18:38 - 00000000 ____D () C:\Users\vedran\AppData\Roaming\DropboxMaster
2014-03-23 18:30 - 2014-03-23 20:49 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-03-23 15:57 - 2014-03-23 16:01 - 88551496 _____ (AVAST Software) C:\Users\vedran\Downloads\avast_free_antivirus_setup (2).exe
2014-03-23 15:55 - 2014-03-24 22:58 - 00000000 ____D () C:\ComboFix
2014-03-22 23:43 - 2014-03-22 23:43 - 05190052 ____R (Swearware) C:\Users\vedran\Downloads\ComboFix(1).exe
2014-03-22 23:13 - 2011-06-26 07:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-03-22 23:13 - 2010-11-07 18:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-03-22 23:13 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-03-22 23:13 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-03-22 23:13 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-03-22 23:13 - 2000-08-31 01:00 - 00098816 _____ () C:\Windows\sed.exe
2014-03-22 23:13 - 2000-08-31 01:00 - 00080412 _____ () C:\Windows\grep.exe
2014-03-22 23:13 - 2000-08-31 01:00 - 00068096 _____ () C:\Windows\zip.exe
2014-03-22 22:23 - 2014-03-24 22:43 - 05192353 ____R (Swearware) C:\Users\vedran\Desktop\ComboFix.exe
2014-03-22 22:07 - 2014-03-22 22:07 - 00001672 _____ () C:\Users\vedran\Desktop\AdwCleaner[S1].txt
2014-03-22 22:03 - 2014-03-22 22:03 - 01950720 _____ () C:\Users\vedran\Desktop\AdwCleaner(1).exe
2014-03-22 21:44 - 2014-03-22 22:04 - 00000000 ____D () C:\AdwCleaner
2014-03-22 21:44 - 2014-03-22 21:44 - 01950720 _____ () C:\Users\vedran\Downloads\AdwCleaner.exe
2014-03-22 21:39 - 2014-03-26 23:37 - 00003706 _____ () C:\Windows\system32\cwlog.dtl
2014-03-22 19:33 - 2014-03-22 19:33 - 00013114 _____ () C:\Users\vedran\Desktop\attach.txt
2014-03-22 19:33 - 2014-03-22 19:32 - 00021084 _____ () C:\Users\vedran\Desktop\dds.txt
2014-03-22 19:30 - 2014-03-22 19:30 - 00688992 _____ (Swearware) C:\Users\vedran\Downloads\dds (1).pif
2014-03-22 19:30 - 2014-03-22 19:30 - 00688992 _____ (Swearware) C:\Users\vedran\Downloads\dds (1).com
2014-03-22 19:24 - 2014-03-22 19:24 - 00688992 _____ (Swearware) C:\Users\vedran\Downloads\dds.pif
2014-03-22 19:23 - 2014-03-22 19:24 - 00688992 ____R (Swearware) C:\Users\vedran\Downloads\dds.com
2014-03-22 05:49 - 2014-03-22 05:49 - 00061120 _____ (StdLib) C:\Windows\system32\Drivers\wStLib64.sys
2014-03-19 21:32 - 2014-03-24 22:58 - 00000000 ___HD () C:\Windows\update.tray-8-0-lnk
2014-03-19 21:32 - 2014-03-24 22:58 - 00000000 ___HD () C:\Windows\update.tray-8-0
2014-03-19 21:18 - 2014-03-24 14:01 - 00001913 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-03-19 21:17 - 2014-03-19 21:17 - 04050888 _____ (Avira Operations GmbH & Co. KG) C:\Users\vedran\Downloads\avira_en_av___ws (2).exe
2014-03-19 21:17 - 2014-03-19 21:17 - 00000000 ____D () C:\ProgramData\Package Cache
2014-03-19 21:16 - 2014-03-19 21:16 - 04050888 _____ (Avira Operations GmbH & Co. KG) C:\Users\vedran\Downloads\avira_en_av___ws.exe
2014-03-19 21:16 - 2014-03-19 21:16 - 04050888 _____ (Avira Operations GmbH & Co. KG) C:\Users\vedran\Downloads\avira_en_av___ws (1).exe
2014-03-19 15:25 - 2014-03-19 15:25 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\hhzsdunn.sys
2014-03-19 15:22 - 2014-03-19 15:25 - 90578216 _____ (AVAST Software) C:\Users\vedran\Downloads\avast_free_antivirus_setup (1).exe
2014-03-16 22:54 - 2014-03-16 22:55 - 01161000 _____ () C:\Users\vedran\Downloads\letters_from_nowhere-gs_agh(2).exe
2014-03-16 22:53 - 2014-03-16 22:54 - 01161000 _____ () C:\Users\vedran\Downloads\letters_from_nowhere-gs_agh(1).exe
2014-03-16 22:45 - 2014-03-16 22:45 - 01161000 _____ () C:\Users\vedran\Downloads\farm_frenzy_3-gs_agh.exe
2014-03-16 22:44 - 2014-03-16 22:44 - 01161000 _____ () C:\Users\vedran\Downloads\letters_from_nowhere-gs_agh.exe
2014-03-16 22:44 - 2014-03-16 22:44 - 01161000 _____ () C:\Users\vedran\Downloads\letters_from_nowhere-gs_agh (1).exe
2014-03-08 22:39 - 2014-03-08 22:45 - 00000000 ____D () C:\Users\vedran\Desktop\Originals
2014-03-08 22:32 - 2014-03-08 22:32 - 00056856 _____ () C:\Users\vedran\Desktop\IMG_20140308_121157-bbbbbbbbbbbbbbbbbbb
2014-03-03 04:31 - 2014-03-03 04:31 - 00000000 ____D () C:\91Mobile
2014-02-25 12:01 - 2014-02-25 12:01 - 01418806 _____ () C:\Users\vedran\Downloads\mat-b (4).zip
2014-02-25 11:59 - 2014-02-25 11:59 - 01565356 _____ () C:\Users\vedran\Downloads\mat-osn (6).zip
2014-02-25 11:57 - 2014-02-25 11:57 - 01401052 _____ () C:\Users\vedran\Downloads\mat-osn (5).zip
2014-02-25 11:54 - 2014-02-25 11:54 - 01138902 _____ () C:\Users\vedran\Downloads\mat-osn (3).zip

==================== One Month Modified Files and Folders =======

2014-03-26 23:40 - 2014-03-26 23:40 - 00033682 _____ () C:\Users\vedran\Downloads\FRST.txt
2014-03-26 23:40 - 2014-03-26 23:40 - 00000000 ____D () C:\FRST
2014-03-26 23:40 - 2014-03-26 23:39 - 02157056 _____ (Farbar) C:\Users\vedran\Downloads\FRST64.exe
2014-03-26 23:40 - 2014-02-20 23:28 - 00000000 ____D () C:\Users\vedran\AppData\Roaming\Software Informer
2014-03-26 23:39 - 2014-03-26 23:39 - 01145856 _____ (Farbar) C:\Users\vedran\Downloads\FRST.exe
2014-03-26 23:37 - 2014-03-22 21:39 - 00003706 _____ () C:\Windows\system32\cwlog.dtl
2014-03-26 23:37 - 2012-10-21 12:58 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-26 23:37 - 2011-04-17 15:34 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-26 23:37 - 2011-04-17 12:45 - 01561477 _____ () C:\Windows\WindowsUpdate.log
2014-03-26 23:37 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\tracing
2014-03-26 22:48 - 2013-08-21 12:19 - 00000952 _____ () C:\Windows\Tasks\MPCBrowserUpdateTaskUserS-1-5-21-2003735831-4074796972-7830778-1000UA.job
2014-03-26 22:48 - 2013-08-21 12:19 - 00000900 _____ () C:\Windows\Tasks\MPCBrowserUpdateTaskUserS-1-5-21-2003735831-4074796972-7830778-1000Core.job
2014-03-26 21:35 - 2011-10-31 18:22 - 00026213 _____ () C:\Windows\iplist.txt
2014-03-26 20:49 - 2013-08-21 18:00 - 00000418 _____ () C:\Windows\SysWOW64\AppLog.log
2014-03-26 20:49 - 2013-08-21 12:16 - 00000286 _____ () C:\Windows\Tasks\RMSchedule.job
2014-03-26 13:07 - 2012-10-21 12:00 - 00003934 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{7CD55BEB-1BAE-46DE-A39E-B7B12D353F50}
2014-03-26 12:36 - 2012-05-17 18:08 - 00000404 ____H () C:\Windows\Tasks\Norton Security Scan for vedran.job
2014-03-26 09:46 - 2009-07-14 05:51 - 00144447 _____ () C:\Windows\setupact.log
2014-03-25 05:35 - 2011-04-17 15:34 - 00000944 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-25 05:35 - 2009-07-14 05:45 - 00014224 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-25 05:35 - 2009-07-14 05:45 - 00014224 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-24 22:58 - 2014-03-23 15:55 - 00000000 ____D () C:\ComboFix
2014-03-24 22:58 - 2014-03-19 21:32 - 00000000 ___HD () C:\Windows\update.tray-8-0-lnk
2014-03-24 22:58 - 2014-03-19 21:32 - 00000000 ___HD () C:\Windows\update.tray-8-0
2014-03-24 22:58 - 2014-02-17 14:58 - 00000000 ___HD () C:\Windows\update.tray-7-0-lnk
2014-03-24 22:58 - 2014-02-17 14:58 - 00000000 ___HD () C:\Windows\update.tray-7-0
2014-03-24 22:58 - 2014-02-15 22:36 - 00000000 ____D () C:\Windows\erdnt
2014-03-24 22:58 - 2014-02-15 22:21 - 00000000 ____D () C:\Program Files (x86)\Speed Test 127
2014-03-24 22:58 - 2013-10-30 10:53 - 00000000 ____D () C:\Users\vedran\AppData\Roaming\DMCache
2014-03-24 22:58 - 2013-05-26 13:34 - 00000000 ____D () C:\Users\vedran\Desktop\programi
2014-03-24 22:58 - 2012-07-06 12:28 - 00000000 ____D () C:\Program Files (x86)\intellidownload
2014-03-24 22:58 - 2011-12-12 18:16 - 00000000 ____D () C:\Windows\av_ico
2014-03-24 22:58 - 2011-12-12 18:15 - 00000000 ___HD () C:\Windows\update.tray-9-0-lnk
2014-03-24 22:58 - 2011-12-12 18:15 - 00000000 ___HD () C:\Windows\update.tray-9-0
2014-03-24 22:58 - 2011-11-30 15:25 - 00000000 ___HD () C:\Windows\update.7.1
2014-03-24 22:58 - 2011-10-31 18:27 - 00000000 ____D () C:\Windows\rpcminer
2014-03-24 22:58 - 2011-10-31 18:27 - 00000000 ____D () C:\Windows\phoenix
2014-03-24 22:58 - 2011-10-31 18:25 - 00000000 ___HD () C:\Windows\update.5.0
2014-03-24 22:58 - 2011-10-31 18:23 - 00000000 ___HD () C:\Windows\update.2
2014-03-24 22:58 - 2011-10-31 18:21 - 00000000 ___HD () C:\Windows\update.1
2014-03-24 22:58 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2014-03-24 22:57 - 2014-02-15 22:37 - 00000000 ____D () C:\Qoobox
2014-03-24 22:48 - 2014-02-22 12:32 - 00000000 ____D () C:\Users\vedran\AppData\Local\CrashDumps
2014-03-24 22:44 - 2014-03-24 22:44 - 00016712 _____ (Sysinternals - [Link mogu videti samo ulogovani korisnici]) C:\Windows\system32\Drivers\PROCEXP113.SYS
2014-03-24 22:44 - 2014-03-23 22:45 - 00000000 ___SD () C:\32788R22FWJFW
2014-03-24 22:44 - 2013-04-14 17:24 - 00000320 _____ () C:\Windows\Tasks\Start Registry Reviver for vedran-PC@vedran(logon).job
2014-03-24 22:43 - 2014-03-22 22:23 - 05192353 ____R (Swearware) C:\Users\vedran\Desktop\ComboFix.exe
2014-03-24 14:01 - 2014-03-19 21:18 - 00001913 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-03-24 14:01 - 2013-08-21 12:15 - 00000286 _____ () C:\Windows\Tasks\RMAutoUpdate.job
2014-03-24 14:01 - 2011-10-31 18:21 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
2014-03-24 14:01 - 2011-10-31 18:21 - 00000981 _____ () C:\Windows\proc_list1.log
2014-03-24 14:00 - 2013-08-21 12:14 - 00000000 ____D () C:\Program Files (x86)\PC Tools Registry Mechanic
2014-03-24 14:00 - 2013-04-17 09:50 - 00000418 ____H () C:\Windows\Tasks\schedule!3036567561.job
2014-03-24 14:00 - 2012-03-10 00:10 - 00000000 ___SH () C:\Windows\system32\dds_log_ad13.cmd
2014-03-24 14:00 - 2011-04-17 12:50 - 00000000 ____D () C:\Users\vedran
2014-03-24 14:00 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-24 06:08 - 2011-05-19 09:33 - 00000000 ____D () C:\Users\vedran\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-03-23 20:54 - 2011-04-17 12:45 - 00000000 ____D () C:\Recovery
2014-03-23 20:49 - 2014-03-23 18:30 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-03-23 20:25 - 2009-07-14 03:34 - 56360960 _____ () C:\Windows\system32\config\software.bak
2014-03-23 20:25 - 2009-07-14 03:34 - 15728640 _____ () C:\Windows\system32\config\system.bak
2014-03-23 20:25 - 2009-07-14 03:34 - 00262144 _____ () C:\Windows\system32\config\security.bak
2014-03-23 20:25 - 2009-07-14 03:34 - 00262144 _____ () C:\Windows\system32\config\sam.bak
2014-03-23 20:25 - 2009-07-14 03:34 - 00262144 _____ () C:\Windows\system32\config\default.bak
2014-03-23 19:14 - 2011-05-19 09:32 - 00000000 ____D () C:\Users\vedran\AppData\Roaming\Dropbox
2014-03-23 19:08 - 2011-05-19 09:35 - 00000000 ___RD () C:\Users\vedran\Dropbox
2014-03-23 18:38 - 2014-03-23 18:38 - 00000000 ____D () C:\Users\vedran\AppData\Roaming\DropboxMaster
2014-03-23 16:01 - 2014-03-23 15:57 - 88551496 _____ (AVAST Software) C:\Users\vedran\Downloads\avast_free_antivirus_setup (2).exe
2014-03-23 13:56 - 2013-10-28 11:44 - 00000000 ____D () C:\Program Files (x86)\WebSparkle
2014-03-23 13:30 - 2009-07-14 06:08 - 00032554 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-03-23 12:32 - 2011-04-17 15:46 - 00627210 _____ () C:\Windows\PFRO.log
2014-03-22 23:43 - 2014-03-22 23:43 - 05190052 ____R (Swearware) C:\Users\vedran\Downloads\ComboFix(1).exe
2014-03-22 23:19 - 2011-10-31 18:23 - 00000734 _____ () C:\Windows\system32\Drivers\etc\hîsts
2014-03-22 22:07 - 2014-03-22 22:07 - 00001672 _____ () C:\Users\vedran\Desktop\AdwCleaner[S1].txt
2014-03-22 22:04 - 2014-03-22 21:44 - 00000000 ____D () C:\AdwCleaner
2014-03-22 22:03 - 2014-03-22 22:03 - 01950720 _____ () C:\Users\vedran\Desktop\AdwCleaner(1).exe
2014-03-22 21:51 - 2009-07-14 03:34 - 00000857 _____ () C:\Windows\win.ini
2014-03-22 21:49 - 2011-04-18 09:40 - 00001045 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-03-22 21:49 - 2011-04-17 12:50 - 00000000 ___RD () C:\Users\vedran\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-03-22 21:44 - 2014-03-22 21:44 - 01950720 _____ () C:\Users\vedran\Downloads\AdwCleaner.exe
2014-03-22 19:33 - 2014-03-22 19:33 - 00013114 _____ () C:\Users\vedran\Desktop\attach.txt
2014-03-22 19:32 - 2014-03-22 19:33 - 00021084 _____ () C:\Users\vedran\Desktop\dds.txt
2014-03-22 19:30 - 2014-03-22 19:30 - 00688992 _____ (Swearware) C:\Users\vedran\Downloads\dds (1).pif
2014-03-22 19:30 - 2014-03-22 19:30 - 00688992 _____ (Swearware) C:\Users\vedran\Downloads\dds (1).com
2014-03-22 19:24 - 2014-03-22 19:24 - 00688992 _____ (Swearware) C:\Users\vedran\Downloads\dds.pif
2014-03-22 19:24 - 2014-03-22 19:23 - 00688992 ____R (Swearware) C:\Users\vedran\Downloads\dds.com
2014-03-22 18:54 - 2011-10-31 18:25 - 00014338 _____ () C:\Windows\btc_client_iplist.txt
2014-03-22 18:49 - 2011-10-31 18:23 - 00014338 _____ () C:\Windows\iecheck_iplist.txt
2014-03-22 05:49 - 2014-03-22 05:49 - 00061120 _____ (StdLib) C:\Windows\system32\Drivers\wStLib64.sys
2014-03-19 21:33 - 2011-10-31 18:22 - 00000019 _____ () C:\Windows\winsetupapi.log
2014-03-19 21:17 - 2014-03-19 21:17 - 04050888 _____ (Avira Operations GmbH & Co. KG) C:\Users\vedran\Downloads\avira_en_av___ws (2).exe
2014-03-19 21:17 - 2014-03-19 21:17 - 00000000 ____D () C:\ProgramData\Package Cache
2014-03-19 21:16 - 2014-03-19 21:16 - 04050888 _____ (Avira Operations GmbH & Co. KG) C:\Users\vedran\Downloads\avira_en_av___ws.exe
2014-03-19 21:16 - 2014-03-19 21:16 - 04050888 _____ (Avira Operations GmbH & Co. KG) C:\Users\vedran\Downloads\avira_en_av___ws (1).exe
2014-03-19 15:51 - 2013-06-26 13:30 - 00000000 ____D () C:\Users\vedran\Desktop\New folder (2)
2014-03-19 15:27 - 2014-02-17 14:41 - 01038072 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-03-19 15:27 - 2014-02-17 14:41 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-03-19 15:27 - 2014-02-17 14:41 - 00207904 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-03-19 15:27 - 2014-02-17 14:41 - 00080184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-03-19 15:27 - 2014-02-17 14:41 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-03-19 15:27 - 2014-02-17 14:41 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-03-19 15:27 - 2014-02-17 14:40 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-03-19 15:27 - 2014-02-17 14:40 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-03-19 15:25 - 2014-03-19 15:25 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\hhzsdunn.sys
2014-03-19 15:25 - 2014-03-19 15:22 - 90578216 _____ (AVAST Software) C:\Users\vedran\Downloads\avast_free_antivirus_setup (1).exe
2014-03-17 11:29 - 2012-07-10 22:45 - 00000000 ____D () C:\Users\vedran\AppData\Roaming\Awem
2014-03-16 22:55 - 2014-03-16 22:54 - 01161000 _____ () C:\Users\vedran\Downloads\letters_from_nowhere-gs_agh(2).exe
2014-03-16 22:54 - 2014-03-16 22:53 - 01161000 _____ () C:\Users\vedran\Downloads\letters_from_nowhere-gs_agh(1).exe
2014-03-16 22:45 - 2014-03-16 22:45 - 01161000 _____ () C:\Users\vedran\Downloads\farm_frenzy_3-gs_agh.exe
2014-03-16 22:44 - 2014-03-16 22:44 - 01161000 _____ () C:\Users\vedran\Downloads\letters_from_nowhere-gs_agh.exe
2014-03-16 22:44 - 2014-03-16 22:44 - 01161000 _____ () C:\Users\vedran\Downloads\letters_from_nowhere-gs_agh (1).exe
2014-03-15 15:54 - 2014-02-17 14:50 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-03-15 12:57 - 2009-07-14 06:13 - 00006382 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-14 14:28 - 2012-10-21 12:58 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-03-14 14:27 - 2012-10-21 12:58 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-14 14:27 - 2011-10-31 18:26 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-08 22:45 - 2014-03-08 22:39 - 00000000 ____D () C:\Users\vedran\Desktop\Originals
2014-03-08 22:35 - 2011-04-20 09:49 - 00056320 ____H () C:\Users\vedran\Desktop\photothumb.db
2014-03-08 22:32 - 2014-03-08 22:32 - 00056856 _____ () C:\Users\vedran\Desktop\IMG_20140308_121157-bbbbbbbbbbbbbbbbbbb
2014-03-03 04:31 - 2014-03-03 04:31 - 00000000 ____D () C:\91Mobile
2014-02-27 09:52 - 2013-03-28 12:44 - 00000000 ____D () C:\Users\vedran\AppData\Local\PlayFree Browser
2014-02-26 22:43 - 2013-08-21 12:21 - 00002384 _____ () C:\Users\vedran\Desktop\PlayFree Browser.lnk
2014-02-26 22:43 - 2013-08-21 12:19 - 00003928 _____ () C:\Windows\System32\Tasks\MPCBrowserUpdateTaskUserS-1-5-21-2003735831-4074796972-7830778-1000UA
2014-02-26 22:43 - 2013-08-21 12:19 - 00003532 _____ () C:\Windows\System32\Tasks\MPCBrowserUpdateTaskUserS-1-5-21-2003735831-4074796972-7830778-1000Core
2014-02-26 22:43 - 2013-08-21 12:19 - 00000000 ____D () C:\Users\vedran\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PlayFree Browser
2014-02-25 12:01 - 2014-02-25 12:01 - 01418806 _____ () C:\Users\vedran\Downloads\mat-b (4).zip
2014-02-25 11:59 - 2014-02-25 11:59 - 01565356 _____ () C:\Users\vedran\Downloads\mat-osn (6).zip
2014-02-25 11:57 - 2014-02-25 11:57 - 01401052 _____ () C:\Users\vedran\Downloads\mat-osn (5).zip
2014-02-25 11:54 - 2014-02-25 11:54 - 01138902 _____ () C:\Users\vedran\Downloads\mat-osn (3).zip
2014-02-24 20:45 - 2013-12-20 13:04 - 00000000 ___HD () C:\Users\vedran\Documents\.4sh

ZeroAccess:
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\9a9f1c46
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\9a9f1c46\@
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\9a9f1c46\X

ZeroAccess:
C:\Windows\assembly\tmp
C:\Windows\assembly\tmp\loader.tlb
C:\Windows\assembly\tmp\{1B372133-BFFA-4dba-9CCF-5474BED6A9F6}
C:\Windows\assembly\tmp\U\00000001.@
C:\Windows\assembly\tmp\U\000000c0.@
C:\Windows\assembly\tmp\U\000000cb.@
C:\Windows\assembly\tmp\U\000000cf.@
C:\Windows\assembly\tmp\U\80000000.@
C:\Windows\assembly\tmp\U\800000c0.@
C:\Windows\assembly\tmp\U\800000cb.@
C:\Windows\assembly\tmp\U\800000cf.@

ZeroAccess:
C:\Windows\System32\consrv.dll

ZeroAccess:
C:\Windows\assembly\GAC_32\Desktop.ini

ZeroAccess:
C:\Windows\assembly\GAC_64\Desktop.ini

Files to move or delete:
====================
C:\ProgramData\ISTask.dll
C:\ProgramData\RegistryReviver.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll
[2009-07-14 00:38] - [2012-02-04 10:07] - 1008640 ____A (Microsoft Corporation) F78E7BD7ADC829D9DD92C558180E09DB

C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-03-24 14:26

==================== End Of Log ============================

Dopuna: 26 Mar 2014 23:44

[Link mogu videti samo ulogovani korisnici]

Poslao: 27 Mar 2014 10:35
Idi na vrh
rip
  • argus  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 27 Apr 2008
  • Poruke: 9160
  • Gde živiš: Prokuplje

Neko ti je namerno blokirao FB, ali pre svega racunar je ozbiljno zarazen malicioznim programima, pa cemo prvo to pocistiti.
Zato, molim te pazljivo prati moja uputstva i ne radi nista na svoju ruku.




Arrow Preuzmi Malwarebytes Anti-Rootkit (MBAR) sa sledeceg linka i sacuvaj ga na Desktop.

Dvoklikom pokreni MBAR () na ikonicu programa:
- Klikni OK na sledecem prozoru da bi dozvolio raspakivanje u zaseban mbar folder na desktop-u;
- mbar.exe ce biti startovan. Na nekim sistemima to moze da potraje nekoliko dodatnih sekundi, te pricekati pokretanje.;
- U uvodnom prozoru klikni dugme Next ukoliko si saglasan;


• Na 'Update Database' prozoru klik na dugme Update da bi preuzeo sveze definicije. Kada se ispise poruka 'Success: Database was successfully updated' klik na dugme Next;
• Pod sekcijom 'Scan Targets' proveri da su sve opcije stiklirane, te klikni na dugme Scan;

Obavestenje: sa nekim infekcijama moze se desiti da se prikaze neka od sledecih poruka:
- 'Could not load protection driver' => u tom slucaju klikni OK.
- 'Could not load DDA driver' => klikni Yes na to obavestenje da bi dozvolio ucitavanje nakon restarta. Dozvoli restart i nastavi sa ostatkom instrukcija posle restarta.




>> Ukoliko malware nije detektovan, klik na Exit dugme da zatvoris program. U sledecu poruku postavi mbar-log-year-month-day (sat-minuti-sekundi).txt i system-log.txt izveštaje.

>> Ukoliko su infekcija/e pronadjene, proveriti da li je obelezena opcija 'Create Restore Point' i klikni na dugme Cleanup! da bi uklonili pretnje.
- Procedura uklanjanje malware-a (scheduled) ce biti zakazana po restartu, bice prikazano obavestenje u pop-up prozoru. Klikni dugme Yes i sistem bi trebao da se restartuje i da zavrsi proceduru ciscenja.



Obavestenje! samo ukoliko je RootKit detektovan: - postaraj se da pokrenes fixdamage.exe alat koji se nalazi u mbar folderu, \Plugins\fixdamage.exe:
- Dvoklikom pokreni fixdamage, u crnom prozoru koji se otvori (command prompt) ukucaj Y (Y stoji za Yes) da bi nastavio izvrsenje, pricekati da alat odradi sve popravke ...
- Kada vidis poruku 'press any key to exit' popravka je kompletirana. Pritisnuti bilo koju tipku na tastaturi da bi se prozor zatvorio. Restartovati sistem.




Sledeci izvestaji ce biti formirani u mbar folderu.
1. mbar-log-year-month-day (hour-minute-second).txt
2. system-log.txt

Iskopiraj sadrzaj mbar log-a u poruku a system log okaci uz poruku koristeci opciju Prikači fajl.




*******************************





Nakon toga preuzmi novi Combofix i pokusaj ponovo da ga pokrenes i dostavis mi izvestaj.
.

MyCity » Ambulanta -> Arhiva Ambulante » problem vk umjesto facebooka

Ko je trenutno na forumu
 

Ukupno su 1203 korisnika na forumu :: 24 registrovanih, 2 sakrivenih i 1177 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 15694 - dana 01 Feb 2026 12:23

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: A.R.Chafee.Jr., Baždaranac, Bbbggg1979, farabut, icemilos, ISOF, lord sir giga, Marko Marković, Milometer, neko iz mase, Nikola9223, obsc, pacika, popinz, Rogan33, shaja1, stefan95, Trpe Grozni, Vladoj, vukajlo71, yrraf, Zgembo78, Čivi, 800077