MyCity » Ambulanta -> Arhiva Ambulante » Racunar se sam gasi

Racunar se sam gasi

Napisano na dan: 22.7.2014

Strana:
1
2

Racunar se sam gasi

Sledeća strana

Pagination

Odgovori

Strana:
1
2

kibo95 Poslao: 22 Jul 2014 11:27 Idi na vrh
offline kibo95 Građanin Pridružio: 01 Feb 2014 Poruke: 92	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Jutros mi se racunar 2 puta sam ugasio,evo treci put sam ga upalio s nadom da se nece ugasiti prije nego vam postavim pitanje u MyCity ambulanti. Gasenje racunara se NE desava kad je racunar necim preopterecen,stavise,igrao sam igricu i tad se nije ugaso,a kad pretrazujem po internetu ili ga ostavim da sam stoji bez i 1 programa ukljucenog,tad se gasi. Ovakav problem mi se nije prije ucestalo desavao,ali se ipak desio 1 ili dva ptua. Ipak to je 2 puta u toku citave godine tako da sam smatrao da nije nista opasno jer se gasenje nije ponavljalo. Primjetio sam da mi je racunar znatno usporio zadnjihmjeseci,al sam pretpostavljao da je to zato sto je ,vec pomalo star a vjerovatno ima i virusa (kad smokod njih nedavno sam odradio boot time scan sa avastom i ukonio sve prepoznate viruse,mada to i nije nesto u mnogome ubrzalo racunar). Takodje vec duze vrijeme (u trajanju od odprilike 2 godine) imam povisenu temepraturu procesora. Nedavno sam ocistio racunar,dobro ga isrpasio i promijenio termalnu pastu pa je sad temperatura manje vise "normalna" i krece se od 60 do 70,nekad mozda i do 80 stepeni (znam da je i ovo previse,al kazem normalna jer mi je racuanr skroo 2 godine radio na temperaturi od ponekad i preko 90 stepeni, i napominjem da se pri toliko visojkoj temperaturi NIJE gasio). Bez nekih otvorenihrpograma teperatura muje jutros iznosila 60 stepeni (cak i malo iznad),a trenutno sa 5-6 otvorenih programa iznosi 70 stepeni. Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:21-07-2014 Ran by pc (administrator) on PC-PC on 22-07-2014 11:14:30 Running from C:\Users\pc\Downloads Platform: Microsoft Windows 7 Ultimate (X86) OS Language: English (United States) Internet Explorer Version 8 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe () C:\Users\pc\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe (PasswordBox, Inc.) C:\Program Files\PasswordBox\pbbtnService.exe (arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe () C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe (RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe () C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe (TeamViewer GmbH) C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe () C:\ProgramData\Premium\GadgetBox Updater\GadgetBox Updater.exe () C:\Program Files\NetCrawl\updateNetCrawl.exe (Google Inc.) C:\Program Files\Google\Update\1.3.22.3\GoogleCrashHandler.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe (Vimisoft Studio) C:\Program Files\IM Magician\vicamon.exe (AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe () C:\Program Files\NetCrawl\bin\utilNetCrawl.exe (RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\Update\realsched.exe (Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (Skillbrains) C:\Users\pc\AppData\Local\Skillbrains\lightshot\5.1.2.5\Lightshot.exe (TechSmith Corporation) C:\Program Files\TechSmith\Jing\Jing.exe (My Cute Buddy) C:\Program Files\My Cute Buddy\myCuteBuddy.exe () C:\Users\pc\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe (Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\RPDS\Bin\rpsystray.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe (Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe (Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe (FinalWire Ltd.) C:\Program Files\FinalWire\AIDA64 Extreme\aida64.exe (Microsoft Corporation) C:\Windows\System32\audiodg.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== HKU\S-1-5-19\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [93696 2009-07-14] (Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [93696 2009-07-14] (Microsoft Corporation) HKU\S-1-5-21-2891494472-4097251544-2303184757-1000\...\Run: [LightShot] => C:\Users\pc\AppData\Local\Skillbrains\lightshot\Lightshot.exe [226592 2014-03-06] () HKU\S-1-5-21-2891494472-4097251544-2303184757-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [17351304 2011-10-13] (Skype Technologies S.A.) HKU\S-1-5-21-2891494472-4097251544-2303184757-1000\...\Run: [Media Finder] => "C:\Program Files\Media Finder\MF.exe" /opentotray HKU\S-1-5-21-2891494472-4097251544-2303184757-1000\...\Run: [Facebook Update] => C:\Users\pc\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-02-10] (Facebook Inc.) HKU\S-1-5-21-2891494472-4097251544-2303184757-1000\...\Run: [Jing] => C:\Program Files\TechSmith\Jing\Jing.exe [2909640 2013-01-07] (TechSmith Corporation) HKU\S-1-5-21-2891494472-4097251544-2303184757-1000\...\Run: [MyCuteBuddy] => C:\Program Files\My Cute Buddy\myCuteBuddy.exe [2408960 2013-01-14] (My Cute Buddy) HKU\S-1-5-21-2891494472-4097251544-2303184757-1000\...\Run: [FLV Player] => C:\Users\pc\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe [202752 2012-10-26] () HKU\S-1-5-21-2891494472-4097251544-2303184757-1000\...\Run: [VJoy] => C:\Program Files\VJoy\VJoy.exe HKU\S-1-5-21-2891494472-4097251544-2303184757-1000\...\MountPoints2: {d25c03d5-1dd5-11e3-a992-485b39f3637f} - F:\LGAutoRun.exe IFEO\bitguard.exe: [Debugger] tasklist.exe IFEO\bprotect.exe: [Debugger] tasklist.exe IFEO\bpsvc.exe: [Debugger] tasklist.exe IFEO\browserdefender.exe: [Debugger] tasklist.exe IFEO\browserprotect.exe: [Debugger] tasklist.exe IFEO\browsersafeguard.exe: [Debugger] tasklist.exe IFEO\dprotectsvc.exe: [Debugger] tasklist.exe IFEO\jumpflip: [Debugger] tasklist.exe IFEO\protectedsearch.exe: [Debugger] tasklist.exe IFEO\searchinstaller.exe: [Debugger] tasklist.exe IFEO\searchprotection.exe: [Debugger] tasklist.exe IFEO\searchprotector.exe: [Debugger] tasklist.exe IFEO\searchsettings.exe: [Debugger] tasklist.exe IFEO\searchsettings64.exe: [Debugger] tasklist.exe IFEO\snapdo.exe: [Debugger] tasklist.exe IFEO\stinst32.exe: [Debugger] tasklist.exe IFEO\stinst64.exe: [Debugger] tasklist.exe IFEO\umbrella.exe: [Debugger] tasklist.exe IFEO\utiljumpflip.exe: [Debugger] tasklist.exe IFEO\volaro: [Debugger] tasklist.exe IFEO\vonteera: [Debugger] tasklist.exe IFEO\websteroids.exe: [Debugger] tasklist.exe IFEO\websteroidsservice.exe: [Debugger] tasklist.exe Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RealPlayer Cloud Service UI.lnk ShortcutTarget: RealPlayer Cloud Service UI.lnk -> C:\Program Files\Real\RealPlayer\RPDS\Bin\rpsystray.exe (RealNetworks, Inc.) Startup: C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation) HKLM\...\AppCertDlls: [x64] -> c:\program files\movies toolbar\safetynut\x64\safetycrt.dll HKLM\...\AppCertDlls: [x86] -> C:\Program Files\iMesh Applications\MediaBar\Datamngr\apcrtldr.dll <===== ATTENTION ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShell.dll (AVAST Software) GroupPolicy: Group Policy on Chrome detected <======= ATTENTION ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = search.ask.com/?o=APN10640A&gct=hp&.....29&t=4 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = msn.com/?ocid=iehp HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x2088C46521CACC01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = websearch.exitingsearch.info/?pid=1273&.....p;unqvl=50 URLSearchHook: HKLM - Default Value = {3B81079D-2AC9-425f-A494-A1C7D93AFA3C} URLSearchHook: HKLM - GagetBox - {3B81079D-2AC9-425f-A494-A1C7D93AFA3C} - C:\Program Files\GadgetBox\gadgetBoxTB.dll (GadgetBox) URLSearchHook: HKCU - (No Name) - {687578b9-7132-4a7a-80e4-30ee31099e03} - No File SearchScopes: HKLM - DefaultScope {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = websearch.exitingsearch.info/?l=1&q={searchTerms}&pid=1273&r=2014/03/18&hid=524423925507723794&lg=EN&cc=BA&unqvl=50 SearchScopes: HKLM - {52db1893-8a90-4192-aede-08e00b8f8473} URL = dts.search.ask.com/sr?src=ieb&gct=ds&am.....AG1&q={searchTerms} SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} URL = dts.search-results.com/sr?src=ieb&appid.....r=0&q={searchTerms} SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2426} URL = dts.search-results.com/sr?src=ieb&appid.....r=0&q={searchTerms} SearchScopes: HKLM - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3072253 SearchScopes: HKLM - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = websearch.exitingsearch.info/?l=1&q={searchTerms}&pid=1273&r=2014/03/18&hid=524423925507723794&lg=EN&cc=BA&unqvl=50 SearchScopes: HKCU - DefaultScope {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = websearch.exitingsearch.info/?l=1&q={searchTerms}&pid=1273&r=2014/03/18&hid=524423925507723794&lg=EN&cc=BA&unqvl=50 SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKCU - {52db1893-8a90-4192-aede-08e00b8f8473} URL = dts.search.ask.com/sr?src=ieb&gct=ds&am.....AG1&q={searchTerms} SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} URL = SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2426} URL = SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = SearchScopes: HKCU - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = websearch.exitingsearch.info/?l=1&q={searchTerms}&pid=1273&r=2014/03/18&hid=524423925507723794&lg=EN&cc=BA&unqvl=50 SearchScopes: HKCU - {CA6CD04F-51BF-4B83-B012-FBB85430EF02} URL = mysearchresults.com/search?c=2402&t=15&q={searchTerms} BHO: &Yahoo! Toolbar Helper -> {02478D38-C3F9-4efb-9B51-7695ECA05670} -> C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.) BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.) BHO: TTubeITTAdBLockAp -> {159896E9-8F06-79AF-EB94-C2DB61381F05} -> C:\ProgramData\TTubeITTAdBLockAp\K.dll () BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) BHO: Wincore Mediabar -> {28387537-e3f9-4ed7-860c-11e69af4a8a0} -> C:\Program Files\iMesh Applications\MediaBar\Datamngr\ToolBar\wincoreimdtx.dll () BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader) BHO: DigICOuipon -> {547229D6-161C-3672-690D-CD0DB066F1D6} -> C:\ProgramData\DigICOuipon\L2p.dll () BHO: PasswordBox Helper -> {5DB69B97-934B-451D-94DB-32EF802A01CD} -> C:\Program Files\PasswordBox\Application\pbbtn.dll (PasswordBox, Inc.) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) BHO: SpecialSavings -> {74F475FA-6C75-43BD-AAB9-ECDA6184F600} -> C:\Program Files\SpecialSavings\SpecialSavingsSinged.dll (SpecialSavings) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre8\bin\ssv.dll (Oracle Corporation) BHO: NetCrawl -> {769a91da-209f-47fe-88b9-b0321b0982c8} -> C:\Program Files\NetCrawl\NetCrawlbho.dll (NetCrawl) BHO: SelectionLinks -> {7825CFB6-490A-436B-9F26-4A7B5CFC01A9} -> C:\Program Files\OApps\SelectionLinks.dll (SelectionLinks) BHO: DefaultTab Browser Helper -> {7F6AFBF1-E065-4627-A2FD-810366367D01} -> C:\Windows\system32\config\systemprofile\AppData\Roaming\defaulttab\defaulttab\DefaultTabBHO.dll (Search Results LLC.) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software) BHO: DealPly -> {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} -> C:\Program Files\DealPly\DealPlyIE.dll (DealPly Technologies Ltd) BHO: Plugin for Media Finder -> {AD4DF010-E2FD-43CE-864A-6BD1EDC59AC2} -> C:\Users\pc\AppData\Roaming\Media Finder\Extensions\IEPlugin32.dll (Media Finder) BHO: Searchcore Toolbar -> {af6ac4f2-9825-4fb6-a600-92bc5361f209} -> C:\PROGRA~1\SEARCH~1\Datamngr\ToolBar\searchcoredtx.dll No File BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: DataMngr -> {BE7A24F5-69CB-4708-B77B-B1EDA6043B95} -> C:\Program Files\iMesh Applications\MediaBar\Datamngr\BrowserConnection.dll (iMesh, Inc) BHO: Help the General-Search Project -> {CA4520F3-AE13-4FB1-A513-58E23991C86D} -> C:\Users\pc\AppData\Roaming\Media Finder\Extensions\gencrawler_gc.dll () BHO: Complitly -> {D27FC31C-6E3D-4305-8D53-ACDAEFA5F862} -> C:\Users\pc\AppData\Roaming\Complitly\Complitly.dll (SimplyGen) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre8\bin\jp2ssv.dll (Oracle Corporation) BHO: Softonic Helper Object -> {E87806B5-E908-45FD-AF5E-957D83E58E68} -> C:\Program Files\Softonic\Softonic\1.6.4.3\bh\Softonic.dll (Softonic.com) BHO: SingleInstance Class -> {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} -> C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Inc) BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.) Toolbar: HKLM - Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.) Toolbar: HKLM - Searchcore Toolbar - {af6ac4f2-9825-4fb6-a600-92bc5361f209} - C:\PROGRA~1\SEARCH~1\Datamngr\ToolBar\searchcoredtx.dll No File Toolbar: HKLM - No Name - !{687578b9-7132-4a7a-80e4-30ee31099e03} - No File Toolbar: HKLM - No Name - !{F9639E4A-801B-4843-AEE3-03D9DA199E77} - No File Toolbar: HKLM - Softonic Toolbar - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files\Softonic\Softonic\1.6.4.3\SoftonicTlbr.dll (Softonic.com) Toolbar: HKLM - Wincore Mediabar - {28387537-e3f9-4ed7-860c-11e69af4a8a0} - C:\Program Files\iMesh Applications\MediaBar\Datamngr\ToolBar\wincoreimdtx.dll () Toolbar: HKLM - GagetBox - {3B81079D-2AC9-425f-A494-A1C7D93AFA3C} - C:\Program Files\GadgetBox\gadgetBoxTB.dll (GadgetBox) Toolbar: HKLM - PasswordBox - {25E2E5C9-C43C-4EE8-B23E-4383915F2BCE} - C:\Program Files\PasswordBox\Application\pbbtn.dll (PasswordBox, Inc.) Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software) DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} java.sun.com/update/1.8.0/jinstall-1_8_0_05-windows-i586.cab DPF: {CAFEEFAC-0018-0000-0005-ABCDEFFEDCBA} java.sun.com/update/1.8.0/jinstall-1_8_0_05-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} java.sun.com/update/1.8.0/jinstall-1_8_0_05-windows-i586.cab Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF ProfilePath: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\722led9p.default FF DefaultSearchEngine: Ask.com FF SearchEngineOrder.1: Ask.com FF SelectedSearchEngine: Ask.com FF Homepage: hxxp://www.search.ask.com/?o=APN10640A&gct=hp&d=473-100&v=a13277-129&t=4 FF Keyword.URL: hxxp://dts.search.ask.com/sr?src=ffb&gct=ds&appid=100&systemid=473&v=a13277-129&apn_dtid=BND101&apn_ptnrs=AG1&apn_uid=2132470683054552&o=APN10640&q= FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32.dll () FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.) FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin: @idsoftware.com/QuakeLive - C:\ProgramData\id Software\QuakeLive\npquakezero.dll (id Software Inc.) FF Plugin: @java.com/DTPlugin,version=11.5.2 - C:\Program Files\Java\jre8\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.5.2 - C:\Program Files\Java\jre8\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin: @real.com/nppl3260;version=17.0.8.22 - C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.) FF Plugin: @real.com/nprndlchromebrowserrecordext;version=17.0.8 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.) FF Plugin: @real.com/nprndlhtml5videoshim;version=17.0.8 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.) FF Plugin: @real.com/nprndlpepperflashvideoshim;version=17.0.8 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.) FF Plugin: @real.com/nprpplugin;version=17.0.8.22 - C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer Cloud) FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @videolan.org/vlc,version=2.0.2 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\pc\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited) FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\pc\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF user.js: detected! => C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\722led9p.default\user.js FF Plugin ProgramFiles/Appdata: C:\Users\pc\AppData\Roaming\mozilla\plugins\np-mswmp.dll (Microsoft Corporation) FF SearchPlugin: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\722led9p.default\searchplugins\Ask.xml FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\Ask.xml FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\zgametb.xml FF Extension: General Crawler - C:\Users\pc\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\gencrawler@some.com [2012-02-18] FF Extension: Adblock Plus Pop-up Addon - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\722led9p.default\Extensions\adblockpopups@jessehakanen.net.xpi [2014-07-07] FF Extension: NetCrawl - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\722led9p.default\Extensions\{6fcd6092-9615-4f7f-8898-8df53980e5d2}.xpi [2014-07-06] FF Extension: Adblock Plus - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\722led9p.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-07-07] FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\ffxtlbr@babylon.com [2014-06-18] FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-01-05] FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\Alwil Software\Avast5\WebRep\FF FF Extension: avast! Online Security - C:\Program Files\Alwil Software\Avast5\WebRep\FF [2012-03-17] FF HKLM\...\Firefox\Extensions: [{0FAA5C82-A094-4541-8811-D3361F972A81}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2014-04-08] FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF HKCU\...\Firefox\Extensions: [specialsavings@superfish.com] - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles/f6s91ah5.default\extensions\specialsavings@superfish.com FF HKCU\...\Firefox\Extensions: [firefox@passwordbox.com] - C:\Program Files\PasswordBox\Firefox FF Extension: PasswordBox - C:\Program Files\PasswordBox\Firefox [2014-01-17] Chrome: ======= CHR HomePage: hxxp://www.search.ask.com/?o=APN10640A&gct=hp&d=473-100&v=a13277-129&t=4 CHR RestoreOnStartup: "hxxp://google.ba/" CHR StartupUrls: "hxxp://www.search.ask.com/?o=APN10640A&gct=hp&d=473-100&v=a13277-129&t=4" CHR Extension: (ClixAddon) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjnhcgkngeeahimbfhejeaiijecekhba [2014-05-20] CHR Extension: (Demi Lovato 4.0) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomlgendchadgmgccdnndgbacpiggea [2014-05-01] CHR Extension: (TTubeITTAdBLockAp) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndlpkadmeiamekojoihjpppnmahfcaej [2014-02-01] CHR Extension: (Google Wallet) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-11] CHR HKLM\...\Chrome\Extension: [aacbndibbcpajfgnkdkaakeiojmmgmnk] - C:\Users\pc\AppData\Roaming\Media Finder\Extensions\mf_plugin_gc.crx [2014-01-11] CHR HKLM\...\Chrome\Extension: [ablnpmdakdiclnimkjfcaibpgjhapkbl] - C:\Users\pc\AppData\Local\Temp\ccex.crx [2012-01-26] CHR HKLM\...\Chrome\Extension: [defdhglnppeioeflggkmglipcecffkhk] - C:\Program Files\Complitly\chrome\ComplitlyChrome.crx [2012-02-11] CHR HKLM\...\Chrome\Extension: [fjoijdanhaiflhibkljeklcghcmmfffh] - C:\Program Files\Movdap\WebCakeLayers.crx [2013-08-13] CHR HKLM\...\Chrome\Extension: [gaiilaahiahdejapggenmdmafpmbipje] - C:\Program Files\DealPly\DealPly.crx [2011-12-19] CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2014-03-15] CHR HKLM\...\Chrome\Extension: [jpihmmhdcobmllpcnpfbhnipmhamldje] - C:\Users\pc\AppData\Roaming\Media Finder\Extensions\gencrawler_gc.crx [2012-02-18] CHR HKLM\...\Chrome\Extension: [kdidombaedgpfiiedeimiebkmbilgmlc] - C:\Program Files\DefaultTab\DefaultTab.crx [2013-02-12] CHR HKLM\...\Chrome\Extension: [lbjbijienbpmlknbbbjccmdgcjlaokhk] - C:\Program Files\OApps\chrome-sl.crx [2013-08-03] CHR HKLM\...\Chrome\Extension: [odiaflgoglmdpognebeehehkabaclnpb] - C:\Users\pc\AppData\Local\CRE\odiaflgoglmdpognebeehehkabaclnpb.crx [2013-11-21] CHR HKLM\...\Chrome\Extension: [pacgpkgadgmibnhpdidcnfafllnmeomc] - C:\Users\pc\AppData\Local\Temp\ccex.crx [2012-01-26] CHR HKLM\...\Chrome\Extension: [ppjemjejnnojomfekgbpbbnecicblllf] - C:\ProgramData\TheBflix\ppjemjejnnojomfekgbpbbnecicblllf.crx [2012-03-15] CHR HKCU\...\Chrome\Extension: [bdgldefdgecfggjdniencbihfhfnenke] - C:\Users\pc\AppData\Local\PasswordBox\Chrome\extension [2013-04-28] CHR HKCU\...\Chrome\Extension: [gaiilaahiahdejapggenmdmafpmbipje] - C:\Program Files\DealPly\DealPly.crx [2011-12-19] CHR HKCU\...\Chrome\Extension: [odiaflgoglmdpognebeehehkabaclnpb] - C:\Users\pc\AppData\Local\CRE\odiaflgoglmdpognebeehehkabaclnpb.crx [2013-11-21] CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ========================== Services (Whitelisted) ================= R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [50344 2013-12-28] (AVAST Software) R2 DefaultTabUpdate; C:\Users\pc\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe [107520 2013-08-03] () [File not signed] R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [File not signed] R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-05-21] (Hewlett-Packard Co.) [File not signed] R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44544 2008-12-03] (Hewlett-Packard) [File not signed] R2 PasswordBox; C:\Program Files\PasswordBox\pbbtnService.exe [67584 2013-03-27] (PasswordBox, Inc.) [File not signed] R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2008-12-03] (Hewlett-Packard) [File not signed] R2 PSI_SVC_2; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [277360 2013-09-13] (arvato digital services llc) R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39568 2014-03-15] () R2 RealPlayer Cloud Service; C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe [1141848 2014-04-08] (RealNetworks, Inc.) R2 RealPlayerUpdateSvc; C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe [23552 2014-03-20] () [File not signed] R2 Update NetCrawl; C:\Program Files\NetCrawl\updateNetCrawl.exe [321824 2014-07-21] () R2 Util NetCrawl; C:\Program Files\NetCrawl\bin\utilNetCrawl.exe [321824 2014-07-21] () ==================== Drivers (Whitelisted) ==================== R3 AIDA64Driver; C:\Program Files\FinalWire\AIDA64 Extreme\kerneld.x32 [33616 2014-05-27] () R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2013-12-28] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [79720 2013-12-09] (AVAST Software) R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2013-12-09] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [775952 2013-12-28] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [410528 2013-12-28] (AVAST Software) R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [64168 2013-12-28] (AVAST Software) R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [180248 2013-12-28] () S3 HWHandSet; C:\Windows\System32\DRIVERS\hw_quusbmdm.sys [195200 2011-10-24] (Huawei Technologies Co., Ltd.) R1 StarOpen; C:\Windows\system32\Drivers\StarOpen.sys [5632 2006-07-24] () [File not signed] S3 vhidmini; C:\Windows\System32\DRIVERS\vjoy.sys [13112 2013-04-18] (Headsoft) R1 {6fcd6092-9615-4f7f-8898-8df53980e5d2}Gw; C:\Windows\System32\drivers\{6fcd6092-9615-4f7f-8898-8df53980e5d2}Gw.sys [52920 2014-07-05] (StdLib) U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [102272 2011-10-24] (Huawei Technologies Co., Ltd.) ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-07-22 11:14 - 2014-07-22 11:15 - 00027360 _____ () C:\Users\pc\Downloads\FRST.txt 2014-07-22 11:14 - 2014-07-22 11:14 - 00000000 ____D () C:\FRST 2014-07-22 11:13 - 2014-07-22 11:13 - 01080320 _____ (Farbar) C:\Users\pc\Downloads\FRST.exe 2014-07-19 14:28 - 2014-07-19 14:28 - 00077410 _____ () C:\Users\pc\Downloads\cathedrals-3d-tour.kmz 2014-07-17 10:53 - 2014-07-17 10:53 - 00007168 ____H () C:\Users\pc\Documents\photothumb.db 2014-07-16 11:04 - 2014-07-16 11:04 - 00030156 _____ () C:\Users\pc\Downloads\292738_1533602956_Weather.7z 2014-07-15 09:38 - 2014-07-15 09:42 - 00000000 ____D () C:\Users\pc\AppData\Roaming\Notepad++ 2014-07-15 09:38 - 2014-07-15 09:38 - 00000000 ____D () C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++ 2014-07-15 09:38 - 2014-07-15 09:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ 2014-07-15 09:38 - 2014-07-15 09:38 - 00000000 ____D () C:\Program Files\Notepad++ 2014-07-15 09:33 - 2014-07-15 09:34 - 07674224 _____ () C:\Users\pc\Downloads\npp.6.6.7.Installer (1).exe 2014-07-15 09:03 - 2014-07-15 09:03 - 07672824 _____ () C:\Users\pc\Downloads\npp.6.6.7.Installer.exe 2014-07-14 10:58 - 2014-07-14 10:58 - 00001937 _____ () C:\Users\pc\Downloads\Untitled_4.php 2014-07-14 10:58 - 2014-07-14 10:58 - 00001937 _____ () C:\Users\pc\Downloads\Untitled_4 (1).php 2014-07-13 10:46 - 2014-07-13 10:47 - 00000646 _____ () C:\Users\pc\Downloads\Untitled_1.php 2014-07-12 14:06 - 2014-07-12 14:08 - 39912041 _____ () C:\Users\pc\Downloads\wampserver2.5-Apache-2.4.9-Mysql-5.6.17-php5.5.12-32b.exe 2014-07-11 09:55 - 2014-07-11 09:55 - 00003358 _____ () C:\Users\pc\Downloads\user-registration.zip 2014-07-08 15:36 - 2014-07-08 15:36 - 00001137 _____ () C:\Users\pc\Desktop\AIDA64 Extreme.lnk 2014-07-08 15:36 - 2014-07-08 15:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FinalWire 2014-07-08 15:36 - 2014-07-08 15:36 - 00000000 ____D () C:\Program Files\FinalWire 2014-07-08 15:35 - 2014-07-08 15:36 - 15938720 _____ (FinalWire Ltd. ) C:\Users\pc\Downloads\aida64extreme450.exe 2014-07-07 15:16 - 2014-07-07 15:16 - 01317016 _____ (CodecPerformer) C:\Users\pc\Downloads\CodecPerformerSetup.exe 2014-07-07 10:43 - 2014-07-07 10:43 - 00133000 _____ () C:\Users\pc\Downloads\adblock_plus_pop_up_addon-0.9.2-fx.xpi 2014-07-07 10:42 - 2014-07-07 10:42 - 12347080 _____ (Elex do Brasil Participações Ltda) C:\Users\pc\Downloads\yet_another_cleaner_sk.exe 2014-07-06 14:15 - 2014-07-06 14:15 - 00000000 ____D () C:\Users\pc\Documents\My Palettes 2014-07-06 14:12 - 2014-07-17 10:28 - 00000000 ____D () C:\Users\pc\Documents\Corel 2014-07-06 14:10 - 2014-07-06 14:12 - 00000000 ____D () C:\ProgramData\Protexis 2014-07-06 14:10 - 2014-07-06 14:10 - 00000000 ____D () C:\Users\pc\AppData\Roaming\Corel 2014-07-06 14:10 - 2014-07-06 14:06 - 00002409 _____ () C:\Users\Public\Desktop\Bitstream Font Navigator.lnk 2014-07-06 14:10 - 2014-07-06 14:04 - 00002816 _____ () C:\Users\Public\Desktop\Corel CAPTURE X7.lnk 2014-07-06 14:10 - 2014-07-06 14:04 - 00002309 _____ () C:\Users\Public\Desktop\Corel CONNECT X7.lnk 2014-07-06 14:10 - 2014-07-06 14:03 - 00002819 _____ () C:\Users\Public\Desktop\Corel PHOTO-PAINT X7.lnk 2014-07-06 14:10 - 2014-07-06 14:03 - 00002771 _____ () C:\Users\Public\Desktop\CorelDRAW X7.lnk 2014-07-06 14:09 - 2014-07-06 14:09 - 00000000 ____D () C:\ProgramData\Package Cache 2014-07-06 14:06 - 2014-07-06 14:06 - 00000000 ____D () C:\Program Files\Common Files\Corel 2014-07-06 14:05 - 2014-07-06 14:05 - 00000000 ____D () C:\Program Files\Common Files\Protexis 2014-07-06 14:04 - 2014-07-06 14:04 - 00000000 ____D () C:\Users\Public\Documents\Corel 2014-07-06 14:03 - 2014-07-06 14:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X7 2014-07-06 14:01 - 2014-07-06 14:12 - 00000000 ____D () C:\ProgramData\Corel 2014-07-06 14:01 - 2014-07-06 14:02 - 00000000 ____D () C:\Program Files\Corel 2014-07-06 13:41 - 2014-07-06 13:41 - 00000000 ____D () C:\ProgramData\CorelDRAW Graphics Suite X7 2014-07-06 13:38 - 2014-04-03 10:04 - 486325712 _____ (Acresso Software Inc. ) C:\Users\pc\Downloads\CorelDRAWGraphicsSuiteX7Installer_EN64Bit.exe 2014-07-06 13:37 - 2014-04-03 10:04 - 436812032 _____ (Acresso Software Inc. ) C:\Users\pc\Downloads\CorelDRAWGraphicsSuiteX7Installer_EN32Bit.exe 2014-07-06 12:55 - 2014-07-05 17:14 - 00052920 _____ (StdLib) C:\Windows\system32\Drivers\{6fcd6092-9615-4f7f-8898-8df53980e5d2}Gw.sys 2014-07-06 12:24 - 2014-07-06 12:24 - 898635189 _____ (Igor Pavlov) C:\Users\pc\Downloads\CorelDrawGraphicsSuiteX7.exe 2014-07-06 11:53 - 2014-07-14 05:34 - 00000000 ____D () C:\Program Files\NetCrawl 2014-07-06 11:52 - 2014-07-06 11:52 - 00710040 _____ () C:\Users\pc\Downloads\download-coreldraw.exe 2014-07-04 05:35 - 2014-07-04 05:35 - 00000000 ____D () C:\Users\pc\AppData\Roaming\Movies Toolbar 2014-06-22 19:06 - 2014-06-22 19:07 - 00069805 _____ () C:\Users\pc\Downloads\JavaDatatypes.pptx 2014-06-22 13:05 - 2014-06-22 13:06 - 00207141 _____ () C:\Users\pc\Downloads\gotovo za doradu.rar ==================== One Month Modified Files and Folders ======= 2014-07-22 11:15 - 2014-07-22 11:14 - 00027360 _____ () C:\Users\pc\Downloads\FRST.txt 2014-07-22 11:14 - 2014-07-22 11:14 - 00000000 ____D () C:\FRST 2014-07-22 11:13 - 2014-07-22 11:13 - 01080320 _____ (Farbar) C:\Users\pc\Downloads\FRST.exe 2014-07-22 11:04 - 2012-01-07 10:38 - 00000000 ____D () C:\Users\pc\AppData\Roaming\Skype 2014-07-22 11:04 - 2012-01-03 15:58 - 01392715 _____ () C:\Windows\WindowsUpdate.log 2014-07-22 11:03 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\NDF 2014-07-22 10:54 - 2012-12-25 21:36 - 00000430 ____H () C:\Windows\Tasks\GadgetBox UpdaterUpdaterTask{F4801DF2-A3EC-4373-9E72-A0EEEC72F6A7}.job 2014-07-22 10:54 - 2012-07-15 21:54 - 00000874 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-07-22 10:54 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-07-22 10:54 - 2009-07-14 06:39 - 00131807 _____ () C:\Windows\setupact.log 2014-07-22 09:55 - 2013-02-10 22:50 - 00000916 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2891494472-4097251544-2303184757-1000UA.job 2014-07-22 09:35 - 2012-07-15 21:54 - 00000878 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-07-22 08:57 - 2013-08-03 20:29 - 00001108 __RSH () C:\Users\pc\ntuser.pol 2014-07-22 08:57 - 2012-01-03 15:57 - 00000000 ____D () C:\Users\pc 2014-07-22 08:57 - 2009-07-14 04:04 - 00000615 _____ () C:\Windows\win.ini 2014-07-22 06:34 - 2012-01-05 19:54 - 00000370 _____ () C:\Windows\Tasks\update-S-1-5-21-2891494472-4097251544-2303184757-1000.job 2014-07-22 06:25 - 2012-01-05 19:54 - 00000370 _____ () C:\Windows\Tasks\update-sys.job 2014-07-21 23:43 - 2009-07-14 06:34 - 00009584 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-07-21 23:43 - 2009-07-14 06:34 - 00009584 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-07-21 21:55 - 2013-02-10 22:50 - 00000894 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2891494472-4097251544-2303184757-1000Core.job 2014-07-21 21:23 - 2012-02-11 22:23 - 00000000 ____D () C:\Program Files\DealPly 2014-07-21 20:00 - 2012-02-14 11:19 - 00000436 _____ () C:\Windows\Tasks\UTILILAB RegistryCLEANER_trial.job 2014-07-20 23:49 - 2013-11-18 17:43 - 00000000 ___SD () C:\Users\pc\Documents\My Web Sites 2014-07-19 14:28 - 2014-07-19 14:28 - 00077410 _____ () C:\Users\pc\Downloads\cathedrals-3d-tour.kmz 2014-07-17 10:53 - 2014-07-17 10:53 - 00007168 ____H () C:\Users\pc\Documents\photothumb.db 2014-07-17 10:28 - 2014-07-06 14:12 - 00000000 ____D () C:\Users\pc\Documents\Corel 2014-07-16 11:04 - 2014-07-16 11:04 - 00030156 _____ () C:\Users\pc\Downloads\292738_1533602956_Weather.7z 2014-07-15 09:42 - 2014-07-15 09:38 - 00000000 ____D () C:\Users\pc\AppData\Roaming\Notepad++ 2014-07-15 09:38 - 2014-07-15 09:38 - 00000000 ____D () C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++ 2014-07-15 09:38 - 2014-07-15 09:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ 2014-07-15 09:38 - 2014-07-15 09:38 - 00000000 ____D () C:\Program Files\Notepad++ 2014-07-15 09:34 - 2014-07-15 09:33 - 07674224 _____ () C:\Users\pc\Downloads\npp.6.6.7.Installer (1).exe 2014-07-15 09:03 - 2014-07-15 09:03 - 07672824 _____ () C:\Users\pc\Downloads\npp.6.6.7.Installer.exe 2014-07-14 10:58 - 2014-07-14 10:58 - 00001937 _____ () C:\Users\pc\Downloads\Untitled_4.php 2014-07-14 10:58 - 2014-07-14 10:58 - 00001937 _____ () C:\Users\pc\Downloads\Untitled_4 (1).php 2014-07-14 05:34 - 2014-07-06 11:53 - 00000000 ____D () C:\Program Files\NetCrawl 2014-07-13 10:47 - 2014-07-13 10:46 - 00000646 _____ () C:\Users\pc\Downloads\Untitled_1.php 2014-07-12 14:08 - 2014-07-12 14:06 - 39912041 _____ () C:\Users\pc\Downloads\wampserver2.5-Apache-2.4.9-Mysql-5.6.17-php5.5.12-32b.exe 2014-07-11 09:55 - 2014-07-11 09:55 - 00003358 _____ () C:\Users\pc\Downloads\user-registration.zip 2014-07-08 15:36 - 2014-07-08 15:36 - 00001137 _____ () C:\Users\pc\Desktop\AIDA64 Extreme.lnk 2014-07-08 15:36 - 2014-07-08 15:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FinalWire 2014-07-08 15:36 - 2014-07-08 15:36 - 00000000 ____D () C:\Program Files\FinalWire 2014-07-08 15:36 - 2014-07-08 15:35 - 15938720 _____ (FinalWire Ltd. ) C:\Users\pc\Downloads\aida64extreme450.exe 2014-07-08 15:20 - 2012-01-20 21:45 - 00000000 ____D () C:\Users\pc\Documents\moji dokumenti 2014-07-07 15:16 - 2014-07-07 15:16 - 01317016 _____ (CodecPerformer) C:\Users\pc\Downloads\CodecPerformerSetup.exe 2014-07-07 10:43 - 2014-07-07 10:43 - 00133000 _____ () C:\Users\pc\Downloads\adblock_plus_pop_up_addon-0.9.2-fx.xpi 2014-07-07 10:42 - 2014-07-07 10:42 - 12347080 _____ (Elex do Brasil Participações Ltda) C:\Users\pc\Downloads\yet_another_cleaner_sk.exe 2014-07-06 19:34 - 2009-07-14 06:33 - 00487744 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-07-06 15:06 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET 2014-07-06 14:15 - 2014-07-06 14:15 - 00000000 ____D () C:\Users\pc\Documents\My Palettes 2014-07-06 14:12 - 2014-07-06 14:10 - 00000000 ____D () C:\ProgramData\Protexis 2014-07-06 14:12 - 2014-07-06 14:01 - 00000000 ____D () C:\ProgramData\Corel 2014-07-06 14:12 - 2012-01-03 16:17 - 00133840 _____ () C:\Users\pc\AppData\Local\GDIPFONTCACHEV1.DAT 2014-07-06 14:10 - 2014-07-06 14:10 - 00000000 ____D () C:\Users\pc\AppData\Roaming\Corel 2014-07-06 14:09 - 2014-07-06 14:09 - 00000000 ____D () C:\ProgramData\Package Cache 2014-07-06 14:06 - 2014-07-06 14:10 - 00002409 _____ () C:\Users\Public\Desktop\Bitstream Font Navigator.lnk 2014-07-06 14:06 - 2014-07-06 14:06 - 00000000 ____D () C:\Program Files\Common Files\Corel 2014-07-06 14:06 - 2014-07-06 14:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X7 2014-07-06 14:05 - 2014-07-06 14:05 - 00000000 ____D () C:\Program Files\Common Files\Protexis 2014-07-06 14:04 - 2014-07-06 14:10 - 00002816 _____ () C:\Users\Public\Desktop\Corel CAPTURE X7.lnk 2014-07-06 14:04 - 2014-07-06 14:10 - 00002309 _____ () C:\Users\Public\Desktop\Corel CONNECT X7.lnk 2014-07-06 14:04 - 2014-07-06 14:04 - 00000000 ____D () C:\Users\Public\Documents\Corel 2014-07-06 14:03 - 2014-07-06 14:10 - 00002819 _____ () C:\Users\Public\Desktop\Corel PHOTO-PAINT X7.lnk 2014-07-06 14:03 - 2014-07-06 14:10 - 00002771 _____ () C:\Users\Public\Desktop\CorelDRAW X7.lnk 2014-07-06 14:02 - 2014-07-06 14:01 - 00000000 ____D () C:\Program Files\Corel 2014-07-06 13:52 - 2012-01-03 16:17 - 00266142 _____ () C:\Windows\PFRO.log 2014-07-06 13:47 - 2012-01-03 16:02 - 00793026 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-07-06 13:41 - 2014-07-06 13:41 - 00000000 ____D () C:\ProgramData\CorelDRAW Graphics Suite X7 2014-07-06 12:24 - 2014-07-06 12:24 - 898635189 _____ (Igor Pavlov) C:\Users\pc\Downloads\CorelDrawGraphicsSuiteX7.exe 2014-07-06 11:55 - 2013-12-04 20:43 - 00000000 ____D () C:\Program Files\BonanzaDealsLive 2014-07-06 11:52 - 2014-07-06 11:52 - 00710040 _____ () C:\Users\pc\Downloads\download-coreldraw.exe 2014-07-06 11:43 - 2013-01-27 09:42 - 00000000 ___RD () C:\Users\pc\Desktop\GAMES 2014-07-06 11:43 - 2012-07-30 14:32 - 00000000 ____D () C:\Program Files\EA GAMES 2014-07-06 11:36 - 2013-06-25 17:07 - 00000000 ____D () C:\Users\pc\AppData\Local\WebPlayer 2014-07-06 11:33 - 2013-12-04 20:43 - 00000000 ____D () C:\Program Files\BonanzaDeals 2014-07-06 09:33 - 2013-08-19 09:31 - 00000000 ____D () C:\ProgramData\Wincert 2014-07-06 09:32 - 2014-02-01 13:17 - 00000000 ____D () C:\ProgramData\ndlpkadmeiamekojoihjpppnmahfcaej 2014-07-06 09:27 - 2014-03-21 11:49 - 00000000 ____D () C:\Program Files\SW-Booster 2014-07-06 09:21 - 2013-12-31 12:07 - 00000000 ____D () C:\Program Files\GS_Enabler 2014-07-06 09:12 - 2014-05-18 11:05 - 00000022 _____ () C:\Users\pc\Downloads\IMG_00909.ZIP 2014-07-05 17:14 - 2014-07-06 12:55 - 00052920 _____ (StdLib) C:\Windows\system32\Drivers\{6fcd6092-9615-4f7f-8898-8df53980e5d2}Gw.sys 2014-07-04 05:35 - 2014-07-04 05:35 - 00000000 ____D () C:\Users\pc\AppData\Roaming\Movies Toolbar 2014-06-22 19:07 - 2014-06-22 19:06 - 00069805 _____ () C:\Users\pc\Downloads\JavaDatatypes.pptx 2014-06-22 13:06 - 2014-06-22 13:05 - 00207141 _____ () C:\Users\pc\Downloads\gotovo za doradu.rar Some content of TEMP: ==================== C:\Users\pc\AppData\Local\Temp\app.exe C:\Users\pc\AppData\Local\Temp\AutoRun.exe C:\Users\pc\AppData\Local\Temp\AutoRunGUI.dll C:\Users\pc\AppData\Local\Temp\BackupSetup.exe C:\Users\pc\AppData\Local\Temp\BundleSweetIMSetup.exe C:\Users\pc\AppData\Local\Temp\CloudBackup7548.exe C:\Users\pc\AppData\Local\Temp\CmdLineExt03.dll C:\Users\pc\AppData\Local\Temp\Delta.exe C:\Users\pc\AppData\Local\Temp\DeltaTB.exe C:\Users\pc\AppData\Local\Temp\down.5736.OptimizerProInstaller.exe C:\Users\pc\AppData\Local\Temp\FP_PL_PFS_INSTALLER_32bit.exe C:\Users\pc\AppData\Local\Temp\htmlayout.dll C:\Users\pc\AppData\Local\Temp\iMesh_setup.exe C:\Users\pc\AppData\Local\Temp\installhelper.dll C:\Users\pc\AppData\Local\Temp\jre-6u31-windows-i586-iftw-rv.exe C:\Users\pc\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe C:\Users\pc\AppData\Local\Temp\lowproc.exe C:\Users\pc\AppData\Local\Temp\MoviesToolbarSetup-Somoto.exe C:\Users\pc\AppData\Local\Temp\MybabylonTB.exe C:\Users\pc\AppData\Local\Temp\OptimizerPro.exe C:\Users\pc\AppData\Local\Temp\propsys.dll C:\Users\pc\AppData\Local\Temp\rad83CE2.tmp_update.exe C:\Users\pc\AppData\Local\Temp\sfamcc00001.dll C:\Users\pc\AppData\Local\Temp\sfamcc00002.dll C:\Users\pc\AppData\Local\Temp\sfamcc00003.dll C:\Users\pc\AppData\Local\Temp\sfamcc00004.dll C:\Users\pc\AppData\Local\Temp\sfareca00002.dll C:\Users\pc\AppData\Local\Temp\sfareca00003.dll C:\Users\pc\AppData\Local\Temp\sfareca00004.dll C:\Users\pc\AppData\Local\Temp\sfextra.dll C:\Users\pc\AppData\Local\Temp\Shockwave_Installer_Slim.exe C:\Users\pc\AppData\Local\Temp\SIntf16.dll C:\Users\pc\AppData\Local\Temp\SIntf32.dll C:\Users\pc\AppData\Local\Temp\SIntfNT.dll C:\Users\pc\AppData\Local\Temp\SRAssetsHelper.dll C:\Users\pc\AppData\Local\Temp\stubhelper.dll C:\Users\pc\AppData\Local\Temp\tbuTor.dll C:\Users\pc\AppData\Local\Temp\toolbar3241341.exe C:\Users\pc\AppData\Local\Temp\Tsu2D666E13.dll C:\Users\pc\AppData\Local\Temp\Tsu35C7E394.dll C:\Users\pc\AppData\Local\Temp\Tsu52022DE5.dll C:\Users\pc\AppData\Local\Temp\Tsu60223B28.dll C:\Users\pc\AppData\Local\Temp\uninst1.exe C:\Users\pc\AppData\Local\Temp\uninstall72929172.exe C:\Users\pc\AppData\Local\Temp\utiAB47.tmp.exe C:\Users\pc\AppData\Local\Temp\vcredist_x86.exe C:\Users\pc\AppData\Local\Temp\VideoConverterSetup.exe C:\Users\pc\AppData\Local\Temp\vlc-2.0.2-win32.exe C:\Users\pc\AppData\Local\Temp\wmpfirefoxplugin.exe C:\Users\pc\AppData\Local\Temp\WSSetup.exe C:\Users\pc\AppData\Local\Temp\xmlUpdater.exe ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll [2009-07-14 01:24] - [2009-07-14 03:16] - 0811520 ____A (Microsoft Corporation) 8626F0C30D4E3564FFDD25C90F4426F1 C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-07-18 06:10 ==================== End Of Log ============================ mycity.rs/must-login.png mycity.rs/must-login.png

Profil

Sass Drake Poslao: 22 Jul 2014 11:39 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Korak 1 Preuzmi "Xplode"-ov AdwCleaner i sačuvaj ga na Desktop Dvoklikom pokreni program. u EULA prozoru klikni na I agree. Klikni na dugme Scan i sačekaj da se završi skeniranje. Klikni na dugme Clean i pričekaj da program završi. Program će zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni OK kao potvrdu. Na sljedeća dva prozora koja se otvore (Informations i Restart required ) klikni OK Računar će se restartovati, a potom otvoriti Notepad (C:\AdwCleaner[S0].txt) sa izvještajem. Sačuvaj taj izvještaj na Desktop i okači ga uz poruku koristeći opciju "Prikači fajl" Napomena: Izvještaj ce takođe biti sačuvan na C:\Adwcleaner\AdwCleaner[S0].txt Korak 2 Ponovo pokreni FRST, označi Addition.txt i klikni na Scan. Kada završi postavi mi nove izvještaje kao što si ih postavio kada si otvorio temu.

Profil

kibo95 Poslao: 22 Jul 2014 12:26 Idi na vrh
offline kibo95 Građanin Pridružio: 01 Feb 2014 Poruke: 92	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 22 Jul 2014 12:22 Evo ga. Okacio bih ranije ali nismo imali struje. Mozda je to jedan dio problema,napon. Mozda je stradalo napajanje,al opet racuanr je znatno usprio a to valjda nema veze sa napajanjem. Usput da spomenem posto ne vidim da ovdje pise, par infromacija o racunaru: Tip racunara: ACPI x86-based PC OS: Microsoft Windows 7 Ultimate CPU : DualCore AMD Athlon Black Edition 7750, 2700 MHz (13.5 x 200) Maticna ploca: Asus M2N68-AM SE2 (1 PCI, 1 PCI-E x1, 1 PCI-E x16, 2 DDR2 DIMM, Audio, Video, LAN) temp trenutno 72 stepena CPU fan 2,5k obrtaja ali ja drzim racunar otvoren da se bolje hladi,usput ovo nije originalni ventilator za cpu nego za sasiju,igdje u gradunisu imali originalni ventilator za CPU za ovaj kuler evo da priakcim i izvjestaj tog adwcelanera: mycity.rs/must-login.png Dopuna: 22 Jul 2014 12:26 iz nekog razloga ne mogu editovati ovaj gore svoj post pa cu u novom postaviti izvjestaj addition.txt iz koraka 2 mycity.rs/must-login.png

Profil

Sass Drake Poslao: 22 Jul 2014 12:45 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Nisi postavio FRST.txt. Trebalo bi da se nalazi u Downloads folderu iako je u uputstvu za otvaranje teme pisalo da FRST snimiš i pokreneš sa Dekstopa. Kada postaviš FRST.txt, premjesti FRST.exe na Desktop.

Profil

kibo95 Poslao: 22 Jul 2014 13:28 Idi na vrh
offline kibo95 Građanin Pridružio: 01 Feb 2014 Poruke: 92	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: pa nisi naglasio da teba i frst.txt ponovo postavljat evo ga mycity.rs/must-login.png

Profil

Sass Drake Poslao: 22 Jul 2014 14:19 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Mislim da sam bio dovoljno jasan: Citat:Kada završi postavi mi nove izvještaje kao što si ih postavio kada si otvorio temu. Idemo dalje: Korak 1 Idi u Start -> Control Panel -> Programs and Features i deinstaliraj sljedeće programe: DigICOuipon GadgetBox Expansion MyCuteBuddy Safeweeb SelectionLinks TTubeITTAdBLockAp UTILILAB RegistryCLEANER Yahoo! Toolbar Korak 2 Otvori Notepad i iskopiraj sljedeći tekst koji se nalazi unutar Kod polja. Start R1 {6fcd6092-9615-4f7f-8898-8df53980e5d2}Gw; C:\Windows\System32\drivers\{6fcd6092-9615-4f7f-8898-8df53980e5d2}Gw.sys [52920 2014-07-05] (StdLib) HKU\S-1-5-21-2891494472-4097251544-2303184757-1000\...\MountPoints2: {d25c03d5-1dd5-11e3-a992-485b39f3637f} - F:\LGAutoRun.exe GroupPolicy: Group Policy on Chrome detected <======= ATTENTION URLSearchHook: HKLM - GagetBox - {3B81079D-2AC9-425f-A494-A1C7D93AFA3C} - C:\Program Files\GadgetBox\gadgetBoxTB.dll No File SearchScopes: HKLM - {52db1893-8a90-4192-aede-08e00b8f8473} URL = http://dts.search.ask.com/sr?src=ieb&gct=ds&appid=100&systemid=473&v=a13277-129&apn_uid=2132470683054552&apn_dtid=BND101&o=APN10640&apn_ptnrs=AG1&q={searchTerms} SearchScopes: HKCU - {52db1893-8a90-4192-aede-08e00b8f8473} URL = http://dts.search.ask.com/sr?src=ieb&gct=ds&appid=100&systemid=473&v=a13277-129&apn_uid=2132470683054552&apn_dtid=BND101&o=APN10640&apn_ptnrs=AG1&q={searchTerms} SearchScopes: HKCU - {CA6CD04F-51BF-4B83-B012-FBB85430EF02} URL = http://www.mysearchresults.com/search?c=2402&t=15&q={searchTerms} Toolbar: HKLM - No Name - !{687578b9-7132-4a7a-80e4-30ee31099e03} - No File Toolbar: HKLM - No Name - !{F9639E4A-801B-4843-AEE3-03D9DA199E77} - No File Toolbar: HKLM - GagetBox - {3B81079D-2AC9-425f-A494-A1C7D93AFA3C} - C:\Program Files\GadgetBox\gadgetBoxTB.dll No File FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\zgametb.xml CHR Extension: (No Name) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndlpkadmeiamekojoihjpppnmahfcaej [2014-02-01] CHR HKLM\...\Chrome\Extension: [ablnpmdakdiclnimkjfcaibpgjhapkbl] - C:\Users\pc\AppData\Local\Temp\ccex.crx [2012-01-26] CHR HKLM\...\Chrome\Extension: [lbjbijienbpmlknbbbjccmdgcjlaokhk] - C:\Program Files\OApps\chrome-sl.crx [2014-03-15] CHR HKLM\...\Chrome\Extension: [odiaflgoglmdpognebeehehkabaclnpb] - C:\Users\pc\AppData\Local\CRE\odiaflgoglmdpognebeehehkabaclnpb.crx [2013-11-21] CHR HKLM\...\Chrome\Extension: [pacgpkgadgmibnhpdidcnfafllnmeomc] - C:\Users\pc\AppData\Local\Temp\ccex.crx [2012-01-26] CHR HKCU\...\Chrome\Extension: [odiaflgoglmdpognebeehehkabaclnpb] - C:\Users\pc\AppData\Local\CRE\odiaflgoglmdpognebeehehkabaclnpb.crx [2013-11-21] CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION 2014-07-22 12:14 - 2014-07-22 12:14 - 00000000 ____D () C:\Users\pc\AppData\Roaming\Iminent 2014-07-22 12:14 - 2014-07-22 12:14 - 00000000 ____D () C:\ProgramData\Iminent 2014-07-07 15:16 - 2014-07-07 15:16 - 01317016 _____ (CodecPerformer) C:\Users\pc\Downloads\CodecPerformerSetup.exe 2014-07-07 10:42 - 2014-07-07 10:42 - 12347080 _____ (Elex do Brasil Participações Ltda) C:\Users\pc\Downloads\yet_another_cleaner_sk.exe 2014-07-06 09:32 - 2014-02-01 13:17 - 00000000 ____D () C:\ProgramData\ndlpkadmeiamekojoihjpppnmahfcaej Task: {37F71C78-79D4-40DE-BD71-CE7B4F523B83} - System32\Tasks\UTILILAB RegistryCLEANER_trial => C:\Program Files\UTILILAB\RegistryCLEANER\utililabrc.exe [2011-08-01] (UTILILAB) Task: {F13859C9-685F-4EA5-9106-882154E56136} - System32\Tasks\GadgetBox UpdaterUpdaterTask{F4801DF2-A3EC-4373-9E72-A0EEEC72F6A7} => C:\ProgramData\Premium\GadgetBox Updater\GadgetBox Updater.exe <==== ATTENTION Task: {F13859C9-685F-4EA5-9106-882154E56136} - System32\Tasks\GadgetBox UpdaterUpdaterTask{F4801DF2-A3EC-4373-9E72-A0EEEC72F6A7} => C:\ProgramData\Premium\GadgetBox Updater\GadgetBox Updater.exe <==== ATTENTION Task: C:\Windows\Tasks\GadgetBox UpdaterUpdaterTask{F4801DF2-A3EC-4373-9E72-A0EEEC72F6A7}.job => C:\ProgramData\Premium\GadgetBox Updater\GadgetBox Updater.exe Task: C:\Windows\Tasks\UTILILAB RegistryCLEANER_trial.job => C:\Program Files\UTILILAB\RegistryCLEANER\utililabrc.exe AlternateDataStreams: C:\ProgramData:gs5sys AlternateDataStreams: C:\Users\All Users:gs5sys AlternateDataStreams: C:\Users\pc:gs5sys AlternateDataStreams: C:\ProgramData\Application Data:gs5sys AlternateDataStreams: C:\Users\pc\Application Data:gs5sys AlternateDataStreams: C:\Users\pc\Cookies:gs5sys AlternateDataStreams: C:\Users\pc\Local Settings:gs5sys AlternateDataStreams: C:\Users\pc\Templates:gs5sys AlternateDataStreams: C:\Users\pc\Desktop\desktop.ini:gs5sys AlternateDataStreams: C:\Users\pc\AppData\Local:gs5sys AlternateDataStreams: C:\Users\pc\AppData\Roaming:gs5sys AlternateDataStreams: C:\Users\pc\AppData\Local\Application Data:gs5sys AlternateDataStreams: C:\Users\pc\AppData\Local\History:gs5sys AlternateDataStreams: C:\Users\pc\Documents\desktop.ini:gs5sys AlternateDataStreams: C:\Users\Public\Documents\desktop.ini:gs5sys C:\Program Files\OApps C:\Users\pc\AppData\Local\CRE CMD: DEL %TEMP%\. /F /S /Q CMD: DEL %WINDIR%\TEMP\. /F /S /Q CMD: RD /S /Q %TEMP% CMD: RD /S /Q %WINDIR%\TEMP Reboot: End U okviru Notepad-a klikni na File --> Save As Fajl nazovi Fixlist i sačuvaj na Desktop Dvoklikom ponovo pokreni FRST.exe Klikni na Fix i sačekaj dok program ne završi. Ukoliko program zatraži restart računara, omogući mu da to nesmetano obavi. Nakon završetka rada, otvoriće se Notepad, sa sadržajem koji treba da kopiraš u temu. Takođe, na Desktop-u će se nalaziti (fixlog.txt). Potrebno je da sadržaj fixlog.txt kopiraš na forum

Profil

kibo95 Poslao: 22 Jul 2014 15:14 Idi na vrh
offline kibo95 Građanin Pridružio: 01 Feb 2014 Poruke: 92	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: e ovakvo je stanje sto se tice ovih navedenih programa sto trebam obrisati za 90% pise da je vjerovatno vec obrisano ranije Citat:Nakon završetka rada, otvoriće se Notepad, sa sadržajem koji treba da kopiraš u temu. Nije se otvorilo nista jer je trazio da restartujem racunar sto sam ja i uradio. Nakon toga nije nista ponovo izbacilo. Evo prilazem fixlog.txt mycity.rs/must-login.png

Profil

Sass Drake Poslao: 22 Jul 2014 15:25 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Reci mi kakvo je sada stanje sistema?

Profil

kibo95 Poslao: 22 Jul 2014 16:20 Idi na vrh
offline kibo95 Građanin Pridružio: 01 Feb 2014 Poruke: 92	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Tesko mi je jos da kazem. Cekacu da vidim oce li se desiti da se ponovo sam ugasi. Sto se tice brzine rada ona je uvijek upocetku manje vise optimalna,a onda predvece toliko zablokira,da mi treba po 4-5 minuta (bez pretjerivanja) da otvori google chrome ili nesto slicno. Javicu ti do veceras kakvo je stanje. Hvala u svakom slucaju. I da,ovo je ambulanta samo za viruse,malware? ukoliko nastave problemi trebalo bi da se javim negdje drugdje?

Profil

Sass Drake Poslao: 22 Jul 2014 16:23 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Da, ovo je ambulanta samo za probleme sa zlonamjernim programima (aka malware). Odradićemo još i ARK provjeru. Preuzmi Malwarebytes Anti-Rootkit (MBAR) sa sledeceg linka i sacuvaj ga na Desktop. Dvoklikom pokreni MBAR () na ikonicu programa: - Klikni OK na sledecem prozoru da bi dozvolio raspakivanje u zaseban mbar folder na desktop-u; - mbar.exe ce biti startovan. Na nekim sistemima to moze da potraje nekoliko dodatnih sekundi, te pricekati pokretanje.; - U uvodnom prozoru klikni dugme Next ukoliko si saglasan; • Na 'Update Database' prozoru klik na dugme Update da bi preuzeo sveze definicije. Kada se ispise poruka 'Success: Database was successfully updated' klik na dugme Next; • Pod sekcijom 'Scan Targets' proveri da su sve opcije stiklirane, te klikni na dugme Scan; Obavestenje: sa nekim infekcijama moze se desiti da se prikaze neka od sledecih poruka: - 'Could not load protection driver' => u tom slucaju klikni OK. - 'Could not load DDA driver' => klikni Yes na to obavestenje da bi dozvolio ucitavanje nakon restarta. Dozvoli restart i nastavi sa ostatkom instrukcija posle restarta. >> Ukoliko malware nije detektovan, klik na Exit dugme da zatvoris program. U sledecu poruku postavi mbar-log-year-month-day (sat-minuti-sekundi).txt i system-log.txt izveštaje. >> Ukoliko su infekcija/e pronadjene, proveriti da li je obelezena opcija 'Create Restore Point' i klikni na dugme Cleanup! da bi uklonili pretnje. - Procedura uklanjanje malware-a (scheduled) ce biti zakazana po restartu, bice prikazano obavestenje u pop-up prozoru. Klikni dugme Yes i sistem bi trebao da se restartuje i da zavrsi proceduru ciscenja. Obavestenje! samo ukoliko je RootKit detektovan: - postaraj se da pokrenes fixdamage.exe alat koji se nalazi u mbar folderu, \Plugins\fixdamage.exe: - Dvoklikom pokreni fixdamage, u crnom prozoru koji se otvori (command prompt) ukucaj Y (Y stoji za Yes) da bi nastavio izvrsenje, pricekati da alat odradi sve popravke ... - Kada vidis poruku 'press any key to exit' popravka je kompletirana. Pritisnuti bilo koju tipku na tastaturi da bi se prozor zatvorio. Restartovati sistem. Sledeci izvestaji ce biti formirani u mbar folderu. 1. mbar-log-year-month-day (hour-minute-second).txt 2. system-log.txt Iskopiraj sadrzaj mbar log-a u poruku a system log okaci uz poruku koristeci opciju Prikači fajl.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Racunar se sam gasi

Ko je trenutno na forumu

Ukupno su 1133 korisnika na forumu :: 53 registrovanih, 7 sakrivenih i 1073 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: 9k38, A.R.Chafee.Jr., Acivi, Alibaba1981, amaterSRB, Atomski čoban, babaroga, bato, BlekMen, Bluper, Bobrock1, BORUTUS, comi_pfc, dankisha, darcaud, deimos25, DonRumataEstorski, Dorcolac, Georgius, Gosha101980, ikan, Istman, jukeboxer, karevski, Kibice, kokodakalo, Komentator, Kubovac, Levi, Lieutenant, madza, mgolub, mikrimaus, mile23, milenko crazy north, opt1, Oscar, Parker, prle122, Rakenica, raso7, S2M, Sančo, slonic_tonic, SR-3m, Srki94, Srle993, Stoilkovic, styg, suton, Vlada1389, voja64, wolverined4

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by