pomoc drugari

1

pomoc drugari

offline
  • Pridružio: 25 Dec 2014
  • Poruke: 17

receno mi je da se obratim ovde kompjuter mi se restartuje sam na 20 sekundi a lap top mi mnogo koci kada god udjem na net ili u cs ...

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Pokušaj da ispratiš uputstvo.

http://www.mycity.rs/Ambulanta/Kako-otvoriti-temu-u-Ambulanti.html

offline
  • Pridružio: 25 Dec 2014
  • Poruke: 17

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 25-12-2014
Ran by Vozd at 2014-12-25 21:39:39
Running from C:\Documents and Settings\Vozd\My Documents\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)


==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2000478354-1993962763-839522115-1003\...\uTorrent) (Version: 3.4.2.35702 - BitTorrent Inc.)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 14.0.0.110 - Adobe Systems Incorporated)
Adobe Flash Player 15 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 15.0.0.246 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.235 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM\...\Adobe Shockwave Player) (Version: 12.1.3.153 - Adobe Systems, Inc.)
Ahead Nero Burning ROM (HKLM\...\Nero - Burning Rom!UninstallKey) (Version: - )
Apple Application Support (HKLM\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ATI - Software Uninstall Utility (HKLM\...\All ATI Software) (Version: 6.14.10.1005 - )
ATI Control Panel (HKLM\...\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}) (Version: 6.14.10.5028 - )
ATI Display Driver (HKLM\...\ATI Display Driver) (Version: 7.91.2-030729a-010086C-Dell - )
BCM V.92 56K Modem (HKLM\...\BCM V.92 56K Modem) (Version: - )
CardBus (Version: 2.00.0001 - Texas Instruments Inc) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform)
C-Major Audio (HKLM\...\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}) (Version: 42xx - SigmaTel)
Combined Community Codec Pack 2014-07-13 (HKLM\...\Combined Community Codec Pack_is1) (Version: 2014.07.13.0 - CCCP Project)
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Driver Magician 3.9 (HKLM\...\Driver Magician_is1) (Version: - GoldSolution Software, Inc.)
EVEREST Ultimate Edition v5.50 (HKLM\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
GOM Player (HKLM\...\GOM Player) (Version: 2.2.62.5207 - Gretech Corporation)
Google Chrome (HKLM\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Hard Disk Sentinel PRO (HKLM\...\Hard Disk Sentinel_is1) (Version: - HDS)
ImgBurn (HKLM\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Java 7 Update 67 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
K-Lite Codec Pack 10.6.5 Full (HKLM\...\KLiteCodecPack_is1) (Version: 10.6.5 - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version: - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox 34.0.5 (x86 en-US) (HKLM\...\Mozilla Firefox 34.0.5 (x86 en-US)) (Version: 34.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 31.0 - Mozilla)
MSVC80_x86_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x86 (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
PC Connectivity Solution (HKLM\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
PCI 7510 CardBus Controller with SmartCard and Software (HKLM\...\InstallShield_{4ABC1F75-7060-4BAE-9972-F2DCBF1D5F1F}) (Version: 2.00.0001 - Texas Instruments Inc)
QuickTime 7 (HKLM\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Skype™ 6.18 (HKLM\...\{1845470B-EB14-4ABC-835B-E36C693DC07D}) (Version: 6.18.106 - Skype Technologies S.A.)
TeamViewer 9 (HKLM\...\TeamViewer 9) (Version: 9.0.31064 - TeamViewer)
The KMPlayer (remove only) (HKLM\...\The KMPlayer) (Version: 3.9.0.126 - PandoraTV)
TP-LINK 150Mbps Wireless N USB Adapter Driver (HKLM\...\{38A1E3ED-D913-41D2-9953-A93D5ACE3ADF}) (Version: 1.3.1 - TP-LINK)
TP-LINK Wireless Configuration Utility (HKLM\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.3.1 - TP-LINK)
UnknownFile (HKU\S-1-5-21-2000478354-1993962763-839522115-1003\...\UnknownFile) (Version: 1.0.0.0 - UnknownFile) <==== ATTENTION!
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
WinRAR 5.11 beta 1 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.1 - win.rar GmbH)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points =========================

09-11-2014 14:40:06 Software Distribution Service 3.0
23-12-2014 00:40:40 Software Distribution Service 3.0
23-12-2014 00:39:41 Removed AVG PC TuneUp 2015
23-12-2014 00:39:29 Removed AVG PC TuneUp 2015 (en-US)
23-12-2014 00:39:52 Removed AVG 2015
23-12-2014 00:40:01 Removed AVG 2015
11-11-2014 15:38:22 System Checkpoint
13-11-2014 21:26:58 System Checkpoint
15-11-2014 12:06:11 System Checkpoint
16-11-2014 14:52:23 System Checkpoint
19-11-2014 04:58:50 System Checkpoint
20-11-2014 17:00:52 System Checkpoint
21-11-2014 03:00:39 Software Distribution Service 3.0
22-11-2014 03:34:05 Software Distribution Service 3.0
23-11-2014 03:52:21 System Checkpoint
24-11-2014 22:12:20 System Checkpoint
25-11-2014 23:14:35 System Checkpoint
26-11-2014 23:21:02 System Checkpoint
27-11-2014 23:42:40 System Checkpoint
29-11-2014 08:50:45 System Checkpoint
30-11-2014 16:00:11 System Checkpoint
01-12-2014 16:54:22 System Checkpoint
04-12-2014 16:48:26 System Checkpoint
10-12-2014 03:00:31 Software Distribution Service 3.0
10-12-2014 03:38:15 Software Distribution Service 3.0
11-12-2014 20:38:28 System Checkpoint
12-12-2014 22:52:06 System Checkpoint
14-12-2014 01:45:52 System Checkpoint
15-12-2014 16:37:09 System Checkpoint
16-12-2014 17:30:53 System Checkpoint
18-12-2014 19:27:55 System Checkpoint
20-12-2014 13:14:35 System Checkpoint
21-12-2014 00:09:09 avast! antivirus system restore point
22-12-2014 00:22:38 System Checkpoint
22-12-2014 13:20:51 avast! antivirus system restore point
23-12-2014 22:33:39 System Checkpoint
24-12-2014 22:41:39 System Checkpoint

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2008-04-14 12:00 - 2008-04-14 12:00 - 00000734 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============


(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Program Files\Apple Software Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2012-03-14 18:44 - 2013-01-02 07:48 - 01292288 _____ () C:\WINDOWS\system32\quartz.dll
2008-04-14 12:00 - 2008-04-14 12:00 - 00059904 _____ () C:\WINDOWS\system32\devenum.dll
2008-04-14 12:00 - 2008-04-14 12:00 - 00014336 _____ () C:\WINDOWS\system32\msdmo.dll
2014-04-14 20:41 - 2014-04-14 20:41 - 00039192 _____ () C:\Program Files\CCleaner\branding.dll
2014-12-13 18:58 - 2014-12-13 19:00 - 03758192 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2014-12-19 15:59 - 2014-12-19 15:59 - 16843952 _____ () C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_235.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)


========================= Accounts: ==========================

Administrator (S-1-5-21-2000478354-1993962763-839522115-500 - Administrator - Enabled)
Guest (S-1-5-21-2000478354-1993962763-839522115-501 - Limited - Disabled)
HelpAssistant (S-1-5-21-2000478354-1993962763-839522115-1000 - Limited - Disabled)
SUPPORT_388945a0 (S-1-5-21-2000478354-1993962763-839522115-1002 - Limited - Disabled)
Vozd (S-1-5-21-2000478354-1993962763-839522115-1003 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Vozd

==================== Faulty Device Manager Devices =============

Name: MOBILITY RADEON 7500C
Description: MOBILITY RADEON 7500C
Class Guid: {4D36E968-E325-11CE-BFC1-08002BE10318}
Manufacturer: ATI Technologies Inc.
Service: ati2mtag
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (12/15/2014 04:18:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Hanging application mbam.exe, version 1.0.1.711, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (11/26/2014 09:40:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application skype.exe, version 6.18.32.106, faulting module skype.exe, version 6.18.32.106, fault address 0x0091cc8a.
Processing media-specific event for [skype.exe!ws!]

Error: (11/24/2014 08:59:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application skype.exe, version 6.18.32.106, faulting module skype.exe, version 6.18.32.106, fault address 0x0091cc8a.
Processing media-specific event for [skype.exe!ws!]

Error: (11/24/2014 08:58:47 PM) (Source: EventSystem) (EventID: 4612) (User: )
Description: The COM+ Event System ran out of memory during its internal processing, at line 44 of d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp.

Error: (11/21/2014 03:27:39 AM) (Source: HotFixInstaller) (EventID: 5000) (User: )
Description: EventType visualstudio8setup, P1 microsoft .net framework 2.0-kb958481, P2 1033, P3 1605, P4 msi, P5 f, P6 9.0.31211.0, P7 install, P8 x86, P9 visualstudio8setup0, P10 visualstudio8setup1.

Error: (11/21/2014 03:27:31 AM) (Source: HotFixInstaller) (EventID: 5000) (User: )
Description: EventType visualstudio8setup, P1 microsoft .net framework 3.5-kb963707, P2 1033, P3 1605, P4 msi, P5 f, P6 9.0.31211.0, P7 install, P8 x86, P9 visualstudio8setup0, P10 visualstudio8setup1.

Error: (11/17/2014 09:49:39 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Hanging application chrome.exe, version 36.0.1985.125, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (11/15/2014 09:38:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application chrome.exe, version 36.0.1985.125, faulting module unknown, version 0.0.0.0, fault address 0x00000000.
Processing media-specific event for [chrome.exe!ws!]

Error: (11/09/2014 02:40:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application twcu.exe, version 0.0.0.0, faulting module twcu.exe, version 0.0.0.0, fault address 0x00033b07.
Processing media-specific event for [twcu.exe!ws!]

Error: (11/08/2014 08:23:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application skype.exe, version 6.18.32.106, faulting module skype.exe, version 6.18.32.106, fault address 0x0091cc8a.
Processing media-specific event for [skype.exe!ws!]


System errors:
=============
Error: (12/25/2014 09:23:39 PM) (Source: Rasman) (EventID: 20063) (User: )
Description: Remote Access Connection Manager failed to start because the Point to Point
Protocol failed to initialize. The specified module could not be found.

Error: (12/25/2014 09:23:15 PM) (Source: Rasman) (EventID: 20063) (User: )
Description: Remote Access Connection Manager failed to start because the Point to Point
Protocol failed to initialize. The specified module could not be found.

Error: (12/25/2014 09:14:35 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Remote Access Connection Manager service terminated with the following error:
%%126

Error: (12/25/2014 09:14:35 PM) (Source: Rasman) (EventID: 20063) (User: )
Description: Remote Access Connection Manager failed to start because the Point to Point
Protocol failed to initialize. The specified module could not be found.

Error: (12/25/2014 09:08:45 PM) (Source: Rasman) (EventID: 20063) (User: )
Description: Remote Access Connection Manager failed to start because the Point to Point
Protocol failed to initialize. The specified module could not be found.

Error: (12/25/2014 09:08:36 PM) (Source: Rasman) (EventID: 20063) (User: )
Description: Remote Access Connection Manager failed to start because the Point to Point
Protocol failed to initialize. The specified module could not be found.

Error: (12/25/2014 08:50:16 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Remote Access Connection Manager service terminated with the following error:
%%126

Error: (12/25/2014 08:50:15 PM) (Source: Rasman) (EventID: 20063) (User: )
Description: Remote Access Connection Manager failed to start because the Point to Point
Protocol failed to initialize. The specified module could not be found.

Error: (12/25/2014 08:50:10 PM) (Source: Rasman) (EventID: 20063) (User: )
Description: Remote Access Connection Manager failed to start because the Point to Point
Protocol failed to initialize. The specified module could not be found.

Error: (12/25/2014 08:27:11 PM) (Source: Rasman) (EventID: 20063) (User: )
Description: Remote Access Connection Manager failed to start because the Point to Point
Protocol failed to initialize. The specified module could not be found.


Microsoft Office Sessions:
=========================
Error: (12/15/2014 04:18:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: mbam.exe1.0.1.711hungapp0.0.0.000000000

Error: (11/26/2014 09:40:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: skype.exe6.18.32.106skype.exe6.18.32.1060091cc8a

Error: (11/24/2014 08:59:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: skype.exe6.18.32.106skype.exe6.18.32.1060091cc8a

Error: (11/24/2014 08:58:47 PM) (Source: EventSystem) (EventID: 4612) (User: )
Description: d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp448007000E

Error: (11/21/2014 03:27:39 AM) (Source: HotFixInstaller) (EventID: 5000) (User: )
Description: visualstudio8setupmicrosoft .net framework 2.0-kb95848110331605msif9.0.31211.0installx86xp0

Error: (11/21/2014 03:27:31 AM) (Source: HotFixInstaller) (EventID: 5000) (User: )
Description: visualstudio8setupmicrosoft .net framework 3.5-kb96370710331605msif9.0.31211.0installx86xp0

Error: (11/17/2014 09:49:39 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: chrome.exe36.0.1985.125hungapp0.0.0.000000000

Error: (11/15/2014 09:38:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: chrome.exe36.0.1985.125unknown0.0.0.000000000

Error: (11/09/2014 02:40:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: twcu.exe0.0.0.0twcu.exe0.0.0.000033b07

Error: (11/08/2014 08:23:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: skype.exe6.18.32.106skype.exe6.18.32.1060091cc8a


==================== Memory info ===========================

Processor: Intel(R) Pentium(R) 4 CPU 2.66GHz
Percentage of memory in use: 89%
Total physical RAM: 511.33 MB
Available physical RAM: 55.48 MB
Total Pagefile: 1248.27 MB
Available Pagefile: 526.61 MB
Total Virtual: 2047.88 MB
Available Virtual: 1945.89 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:29.29 GB) (Free:18.17 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: () (Fixed) (Total:45.26 GB) (Free:45.18 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 74.6 GB) (Disk ID: 9E8B9E8B)



Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 25-12-2014
Ran by Vozd (administrator) on VOZD036 on 25-12-2014 21:29:31
Running from C:\Documents and Settings\Vozd\My Documents\Downloads
Loaded Profile: Vozd (Available profiles: Vozd)
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: English (United States)
Internet Explorer Version 8
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Atheros) C:\WINDOWS\system32\acs.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(H.D.S. Hungary) C:\Program Files\Hard Disk Sentinel\HDSentinel.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(BitTorrent Inc.) C:\Documents and Settings\Vozd\Application Data\uTorrent\uTorrent.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [176128 2006-06-02] (Alps Electric Co., Ltd.)
HKLM\...\Run: [NeroCheck] => C:\WINDOWS\system32\NeroCheck.exe [155648 2001-07-09] (Ahead Software Gmbh)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM\...\Run: [Hard Disk Sentinel] => C:\Program Files\Hard Disk Sentinel\HDSentinel.exe [4460176 2014-01-30] (H.D.S. Hungary)
HKLM\...\Run: [ATIPTA] => C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [335872 2003-07-29] (ATI Technologies, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKU\S-1-5-21-2000478354-1993962763-839522115-1003\...\Run: [uTorrent] => C:\Documents and Settings\Vozd\Application Data\uTorrent\uTorrent.exe [1385808 2014-11-15] (BitTorrent Inc.)
HKU\S-1-5-21-2000478354-1993962763-839522115-1003\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [21645408 2014-07-24] (Skype Technologies S.A.)
HKU\S-1-5-21-2000478354-1993962763-839522115-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\ccleaner.exe [5489944 2014-12-12] (Piriform Ltd)
HKU\S-1-5-21-2000478354-1993962763-839522115-1003\...\RunOnce: [Adobe Speed Launcher] => 1419535539
SecurityProviders: msapsspc.dll, schannel.dll, credssp.dll, digest.dll, msnsspc.dll
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk
ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-19\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-20\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-2000478354-1993962763-839522115-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKU\S-1-5-21-2000478354-1993962763-839522115-1003 -> DefaultScope {a8177b71-ee19-4e0f-b2f9-02d533eb946D} URL = searchalgo.com/search.html?q={searchTerms}&cid=4151
SearchScopes: HKU\S-1-5-21-2000478354-1993962763-839522115-1003 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = mysearch.avg.com/search?cid={E0517DFC-627F-44EA-9969-E1615ADE8C01}&mid=22adb4d0665b47d28697c1b7abfdc64c-6da1e1135ca159a3e53f1882f1742f70b05113b9&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-11-08 01:32:54&v=4.0.0.19&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2000478354-1993962763-839522115-1003 -> {a8177b71-ee19-4e0f-b2f9-02d533eb946D} URL = searchalgo.com/search.html?q={searchTerms}&cid=4151
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: No Name -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 89.216.1.40 89.216.1.50

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Vozd\Application Data\Mozilla\Firefox\Profiles\9iezxufc.default
FF SearchEngineOrder.1: SearchAlgo
FF SelectedSearchEngine: SearchAlgo
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_235.dll ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw_1213153.dll (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF user.js: detected! => C:\Documents and Settings\Vozd\Application Data\Mozilla\Firefox\Profiles\9iezxufc.default\user.js
FF SearchPlugin: C:\Documents and Settings\Vozd\Application Data\Mozilla\Firefox\Profiles\9iezxufc.default\searchplugins\avg-secure-search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\wtu-secure-search.xml
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2014-08-08]

Chrome:
=======
CHR Profile: C:\Documents and Settings\Vozd\Local Settings\Application Data\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Documents and Settings\Vozd\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-08]
CHR Extension: (Google Drive) - C:\Documents and Settings\Vozd\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-08]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Documents and Settings\Vozd\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-08-08]
CHR Extension: (YouTube) - C:\Documents and Settings\Vozd\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-08]
CHR Extension: (Google Search) - C:\Documents and Settings\Vozd\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-08]
CHR Extension: (GamingWonderland) - C:\Documents and Settings\Vozd\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nglnnifljabmkcecofpnlokcgnmbecia [2014-12-21]
CHR Extension: (Google Wallet) - C:\Documents and Settings\Vozd\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-08]
CHR Extension: (Gmail) - C:\Documents and Settings\Vozd\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-08]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 acs; C:\WINDOWS\system32\acs.exe [499796 2011-12-26] (Atheros) [File not signed]
S2 Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [323584 2003-07-29] ()
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-09-15] (Oracle Corporation)
S3 jswpsapi; C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WPS\jswpsapi.exe [360529 2011-12-26] (wireless) [File not signed]
S4 RemoteAccess; C:\WINDOWS\System32\mprdim.dll [49152 2004-08-04] (Microsoft Corporation) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 AR9271; C:\WINDOWS\System32\DRIVERS\athuw.sys [1763584 2012-10-18] (Atheros Communications, Inc.)
R3 BCMModem; C:\WINDOWS\System32\DRIVERS\BCMSM.sys [1101696 2003-08-29] (Broadcom Corporation)
R0 Compbatt; C:\WINDOWS\System32\DRIVERS\compbatt.sys [9344 2004-08-04] (Microsoft Corporation) [File not signed]
R1 Fips; C:\WINDOWS\system32\Drivers\Fips.sys [34944 2004-08-04] (Microsoft Corporation) [File not signed]
R0 isapnp; C:\WINDOWS\System32\DRIVERS\isapnp.sys [35840 2004-08-04] (Microsoft Corporation) [File not signed]
R3 JSWSCIMD; C:\WINDOWS\System32\DRIVERS\jswscimd.sys [57440 2011-12-26] (Atheros Communications, Inc.)
R0 mv61xxmm; C:\WINDOWS\system32\Drivers\mv61xxmm.sys [13616 2012-03-14] (Marvell Semiconductor Inc.)
R0 mv64xxmm; C:\WINDOWS\system32\Drivers\mv64xxmm.sys [5632 2012-03-14] (Marvell Semiconductor Inc.) [File not signed]
R0 mvxxmm; C:\WINDOWS\system32\Drivers\mvxxmm.sys [13616 2012-03-14] (Marvell Semiconductor Inc.)
R0 PartMgr; C:\WINDOWS\system32\Drivers\PartMgr.sys [18688 2004-08-04] (Microsoft Corporation) [File not signed]
R3 STAC97; C:\WINDOWS\System32\drivers\stac97.sys [264440 2004-11-15] (SigmaTel, Inc.)
S3 swmidi; C:\WINDOWS\System32\drivers\swmidi.sys [54272 2004-08-04] (Microsoft Corporation) [File not signed]
R3 WSIMD; C:\WINDOWS\System32\DRIVERS\wsimd.sys [58208 2011-12-26] (Atheros Communications, Inc.) [File not signed]
U5 BattC; C:\Windows\System32\Drivers\BattC.sys [14080 2004-08-04] (Microsoft Corporation) [File not signed]
S4 IntelIde; No ImagePath
U1 WS2IFSL; No ImagePath

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-25 21:29 - 2014-12-25 21:29 - 00000000 ____D () C:\FRST
2014-12-21 00:19 - 2014-12-21 00:19 - 00000000 ____D () C:\Documents and Settings\Vozd\Local Settings\Application Data\Temp
2014-12-21 00:08 - 2014-12-22 13:24 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\AVAST Software
2014-12-19 20:03 - 2014-12-19 20:03 - 00000000 ____D () C:\Documents and Settings\LocalService\Application Data\McAfee
2014-12-19 17:49 - 2014-12-19 17:49 - 00000000 ____D () C:\WINDOWS\Sun
2014-12-19 15:59 - 2014-12-19 15:59 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\McAfee
2014-12-15 15:51 - 2014-12-15 15:51 - 00000000 ____D () C:\Documents and Settings\Vozd\Local Settings\Application Data\Avg2015
2014-12-13 18:58 - 2014-12-13 19:00 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-12-11 21:52 - 2014-12-11 21:52 - 00001592 _____ () C:\Documents and Settings\Vozd\Desktop\Counter-Strike WaRzOnE.lnk
2014-12-11 21:52 - 2014-12-11 21:52 - 00000688 _____ () C:\Documents and Settings\Vozd\Desktop\Half-Life WaRzOnE.lnk
2014-12-11 21:22 - 2014-12-11 21:22 - 00000000 ____D () C:\Documents and Settings\Vozd\Application Data\MPC-HC

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-25 21:36 - 2014-08-08 00:43 - 00000000 ____D () C:\Documents and Settings\Vozd\Application Data\uTorrent
2014-12-25 21:32 - 2014-10-03 05:08 - 00000000 ____D () C:\Documents and Settings\Vozd\Local Settings\Temp
2014-12-25 21:26 - 2014-08-08 01:33 - 00000886 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-12-25 21:23 - 2014-08-08 01:48 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-12-25 20:26 - 2014-10-03 05:00 - 01479641 _____ () C:\WINDOWS\WindowsUpdate.log
2014-12-25 20:25 - 2014-10-03 05:07 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-12-25 20:25 - 2014-08-08 02:10 - 00000000 ____D () C:\Documents and Settings\Vozd\Application Data\Skype
2014-12-25 20:25 - 2014-08-08 01:47 - 00001324 _____ () C:\WINDOWS\system32\d3d9caps.dat
2014-12-25 20:25 - 2014-08-08 01:33 - 00000882 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-12-25 18:23 - 2014-10-03 05:07 - 00032528 _____ () C:\WINDOWS\SchedLgU.Txt
2014-12-24 01:33 - 2014-10-03 05:08 - 00000000 ____D () C:\Documents and Settings\Vozd
2014-12-24 01:33 - 2014-08-15 15:10 - 00000000 ____D () C:\WINDOWS\Minidump
2014-12-24 01:28 - 2014-10-08 02:34 - 00524288 _____ () C:\WINDOWS\system32\config\ACS.evt
2014-12-24 01:28 - 2014-10-03 05:08 - 00000178 ___SH () C:\Documents and Settings\Vozd\ntuser.ini
2014-12-22 15:06 - 2014-08-08 01:54 - 00000284 _____ () C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
2014-12-21 00:29 - 2014-08-08 01:39 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Adobe
2014-12-21 00:14 - 2014-08-08 01:35 - 00001813 _____ () C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
2014-12-19 16:23 - 2014-08-08 01:48 - 00701104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-12-19 16:23 - 2008-04-14 12:00 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-12-19 15:59 - 2014-08-08 01:39 - 00000000 ____D () C:\Documents and Settings\Vozd\Local Settings\Application Data\Adobe
2014-12-19 15:39 - 2008-04-14 12:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2014-12-19 13:57 - 2014-08-08 01:39 - 00000000 ____D () C:\Program Files\CCleaner
2014-12-16 16:39 - 2014-08-08 01:39 - 00000682 _____ () C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
2014-12-15 15:56 - 2014-08-30 14:24 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\MFAData
2014-12-14 18:26 - 2014-08-08 01:31 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-12-12 21:33 - 2014-11-07 14:26 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\4c0f6683-2f83-421e-8410-9d669d28d41d
2014-12-12 21:33 - 2014-11-07 02:22 - 00000000 ____D () C:\Documents and Settings\Vozd\Application Data\Performersoft
2014-12-11 21:52 - 2014-08-19 17:13 - 00000626 _____ () C:\Documents and Settings\Vozd\Desktop\HLDS.lnk
2014-12-11 21:50 - 2014-08-19 17:10 - 00000000 ____D () C:\Games
2014-12-11 21:21 - 2014-08-08 01:50 - 00000000 ____D () C:\The KMPlayer
2014-12-10 03:46 - 2014-11-10 00:04 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-12-10 03:38 - 2012-03-14 18:45 - 109818608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mrt.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================


Partition 1: (Active) - (Size=29.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=45.3 GB) - (Type=OF Extended)

==================== End Of Log ============================
jel moze???

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Arrow Korak 1

Otvori Notepad i iskopiraj sljedeći tekst koji se nalazi unutar Kod polja.

GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-19\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-20\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-2000478354-1993962763-839522115-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKU\S-1-5-21-2000478354-1993962763-839522115-1003 -> DefaultScope {a8177b71-ee19-4e0f-b2f9-02d533eb946D} URL = http://www.searchalgo.com/search.html?q={searchTerms}&cid=4151
SearchScopes: HKU\S-1-5-21-2000478354-1993962763-839522115-1003 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = https://mysearch.avg.com/search?cid={E0517DFC-627F-44EA-9969-E1615ADE8C01}&mid=22adb4d0665b47d28697c1b7abfdc64c-6da1e1135ca159a3e53f1882f1742f70b05113b9&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-11-08 01:32:54&v=4.0.0.19&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2000478354-1993962763-839522115-1003 -> {a8177b71-ee19-4e0f-b2f9-02d533eb946D} URL = http://www.searchalgo.com/search.html?q={searchTerms}&cid=4151
BHO: No Name -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> No File
FF SearchEngineOrder.1: SearchAlgo
FF SelectedSearchEngine: SearchAlgo
FF user.js: detected! => C:\Documents and Settings\Vozd\Application Data\Mozilla\Firefox\Profiles\9iezxufc.default\user.js
FF SearchPlugin: C:\Documents and Settings\Vozd\Application Data\Mozilla\Firefox\Profiles\9iezxufc.default\searchplugins\avg-secure-search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\wtu-secure-search.xml
C:\Documents and Settings\Vozd\Application Data\Performersoft
EmptyTemp:


U okviru Notepad-a klikni na File --> Save As
Fajl nazovi Fixlist i sačuvaj na Desktop
Dvoklikom ponovo pokreni FRST.exe
Klikni na Fix i sačekaj dok program ne završi.
Ukoliko program zatraži restart računara, omogući mu da to nesmetano obavi.
Nakon završetka rada, otvoriće se fixlog.txt, sa sadržajem koji treba da kopiraš u temu.



Arrow Korak 2

Preuzmi "Xplode"-ov AdwCleaner i sačuvaj ga na Desktop
Dvoklikom pokreni program.
u EULA prozoru klikni na I agree.
Klikni na dugme Scan i sačekaj da se završi skeniranje.
Klikni na dugme Clean i pričekaj da program završi.
Program će zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni OK kao potvrdu.
Na sljedeća dva prozora koja se otvore (Informations i Restart required ) klikni OK

Računar će se restartovati, a potom otvoriti Notepad (C:\AdwCleaner[S0].txt) sa izvještajem.
Sačuvaj taj izvještaj na Desktop i okači ga uz poruku koristeći opciju "Prikači fajl"

Napomena: Izvještaj ce takođe biti sačuvan na C:\Adwcleaner\AdwCleaner[S0].txt
Takođe, na Desktop-u će se nalaziti (fixlog.txt).

offline
  • Pridružio: 25 Dec 2014
  • Poruke: 17

mycity.rs/must-login.png

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Nisi mi postavio Fixlog.txt.

offline
  • Pridružio: 25 Dec 2014
  • Poruke: 17

mycity.rs/must-login.png

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Kakvo je sada stanje?

offline
  • Pridružio: 25 Dec 2014
  • Poruke: 17

znatno bolje otvara prozore iako malo secka npr youtube kada skrolujem,cs 1.6 malo bolje ne secka ali slika nesto cudna ali to je verovatno zbog konfiguracije

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Sada ćemo obaviti ARK provjeru.

Preuzmi Malwarebytes Anti-Rootkit (MBAR) sa sledeceg linka i sacuvaj ga na Desktop.

Dvoklikom pokreni MBAR () na ikonicu programa:
- Klikni OK na sledecem prozoru da bi dozvolio raspakivanje u zaseban mbar folder na desktop-u;
- mbar.exe ce biti startovan. Na nekim sistemima to moze da potraje nekoliko dodatnih sekundi, te pricekati pokretanje.;
- U uvodnom prozoru klikni dugme Next ukoliko si saglasan;



• Na 'Update Database' prozoru klik na dugme Update da bi preuzeo sveze definicije. Kada se ispise poruka 'Success: Database was successfully updated' klik na dugme Next;
• Pod sekcijom 'Scan Targets' proveri da su sve opcije stiklirane, te klikni na dugme Scan;

Obavestenje: sa nekim infekcijama moze se desiti da se prikaze neka od sledecih poruka:
- 'Could not load protection driver' => u tom slucaju klikni OK.
- 'Could not load DDA driver' => klikni Yes na to obavestenje da bi dozvolio ucitavanje nakon restarta. Dozvoli restart i nastavi sa ostatkom instrukcija posle restarta.





>> Ukoliko malware nije detektovan, klik na Exit dugme da zatvoris program. U sledecu poruku postavi mbar-log-year-month-day (sat-minuti-sekundi).txt i system-log.txt izveštaje.

>> Ukoliko su infekcija/e pronadjene, proveriti da li je obelezena opcija 'Create Restore Point' i klikni na dugme Cleanup! da bi uklonili pretnje.
- Procedura uklanjanje malware-a (scheduled) ce biti zakazana po restartu, bice prikazano obavestenje u pop-up prozoru. Klikni dugme Yes i sistem bi trebao da se restartuje i da zavrsi proceduru ciscenja.



Obavestenje! samo ukoliko je RootKit detektovan: - postaraj se da pokrenes fixdamage.exe alat koji se nalazi u mbar folderu, \Plugins\fixdamage.exe:
- Dvoklikom pokreni fixdamage, u crnom prozoru koji se otvori (command prompt) ukucaj Y (Y stoji za Yes) da bi nastavio izvrsenje, pricekati da alat odradi sve popravke ...
- Kada vidis poruku 'press any key to exit' popravka je kompletirana. Pritisnuti bilo koju tipku na tastaturi da bi se prozor zatvorio. Restartovati sistem.





Sledeci izvestaji ce biti formirani u mbar folderu.
1. mbar-log-year-month-day (hour-minute-second).txt
2. system-log.txt

Iskopiraj sadrzaj mbar log-a u poruku a system log okaci uz poruku koristeci opciju Prikači fajl.

Ko je trenutno na forumu
 

Ukupno su 994 korisnika na forumu :: 47 registrovanih, 4 sakrivenih i 943 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: A.R.Chafee.Jr., Asparagus, babaroga, bojanM84, BORUTUS, BraneS, brundo65, CrazyDiablo, Dannyboy, djboj, doklevise, DonRumataEstorski, doom83, Dorcolac, dragoljub11987, DragoslavS, gorval, ikan, Istman, Ivan Campo, ivan979, jukeboxer, kokodakalo, kovinacc, Kubovac, kunktator, kybonacci, ljuba, LUDI, Marko Marković, mercedesamg, Metanoja, Nemanja.M, nemkea71, oldtimer, opt1, raptorsi, raykan, repac, sasakrajina, savaskytec, slonic_tonic, stalja, Vlad000, voja64, Wrangler, zlaya011