Usporen racunar

Usporen racunar

offline
  • mile53 
  • Novi MyCity građanin
  • Pridružio: 28 Sep 2012
  • Poruke: 3

Vratio sam se sa odmora Ziveli a moj (sluzbeni) komp, na kome su u medjuvremenu radile kolege Mr. Green , se znacajno usporio. Nemam egzaktne pokazatelje ali mislim da se i podizanje sistema (XP sp3) i pokretanje raznih aplikacija znatno produzilo. E sad, sta sam u mdjuvremenu preduzeo (uglavnom po savetima sa ovog foruma):
1. Instalirao CCleaner i odradio ciscenje od nepotreb. smeca kao i sredjivanje registry-ja
2. Instalirao Adwcleaner i pobio neke bedastoce tipa WebCake
3. Instalirao DelFix i Malware byte i sa njima odradio potrebno
4. Na kraju sa defragger-om defragmentirao C particiju (sto je trajalo nznm kolko sati)

Epilog svega: podizanje sistema (sa logovanjem) za nesto vise od 2min. a otvaranje raznih programa (uljucujuci i Word o SolidWorksu da ne govorim) jakooo dugo GUZ - Glavom U Zid
Moze li neki savet sta da uradim kako bi videli "rentgensku" sliku mog kompa i prepisali "lekic"?
Mozda ovaj GMER koga spominjete.
Unapred hvala.

Pozdrav,
Mile



[edit by: magna86] korigovan naslov teme

offline
  • Research Engineer @MalwareBytes
  • Pridružio: 09 Avg 2011
  • Poruke: 15877
  • Gde živiš: Beograd

Za pocetak da ispratis uputstvo i dostavis izvestaje --> http://www.mycity.rs/Ambulanta/Kako-otvoriti-temu-u-Ambulanti.html

offline
  • mile53 
  • Novi MyCity građanin
  • Pridružio: 28 Sep 2012
  • Poruke: 3

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702
Run by GSP580 at 11:17:27 on 2013-09-03
Microsoft Windows XP Professional 5.1.2600.3.1250.381.1033.18.2012.1515 [GMT 2:00]
.
AV: F-Secure Client Security 9.11 *Enabled/Updated* {E7512ED5-4245-4B4D-AF3A-382D3F313F15}
FW: F-Secure Client Security 9.11 *Enabled*
.
============== Running Processes ================
.
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\cisvc.exe
C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
C:\Program Files\F-Secure\Common\FSMA32.EXE
C:\Program Files\F-Secure\Anti-Virus\FSGK32.EXE
C:\Program Files\F-Secure\Common\FSHDLL32.EXE
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\alg.exe
C:\Program Files\F-Secure\Anti-Virus\fssm32.exe
C:\Program Files\F-Secure\ORSP Client\fsorsp.exe
C:\Program Files\F-Secure\Common\FNRB32.EXE
C:\Program Files\F-Secure\Common\FIH32.EXE
C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe
C:\Program Files\F-Secure\Common\FSM32.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\F-Secure\Anti-Virus\fsav32.exe
C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
C:\WINDOWS\system32\cidaemon.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
.
============== Pseudo HJT Report ===============
.
uStart Page = about:blank
mDefault_Page_URL = hxxp://www.comoestamos.com/search/
BHO: Browsing Protection Class: {C6867EB7-8350-4856-877F-93CF8AE3DC9C} - c:\program files\f-secure\nrs\iescript\baselitmus.dll
TB: Browsing Protection Toolbar: {265EEE8E-3228-44D3-AEA5-F7FDF5860049} - c:\program files\f-secure\nrs\iescript\baselitmus.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [F-Secure TNB] "c:\program files\f-secure\fsgui\TNBUtil.exe" /CHECKALL /WAITFORSW
mRun: [F-Secure Manager] "c:\program files\f-secure\common\FSM32.EXE" /splash
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
uPolicies-Explorer: NoDriveTypeAutoRun = dword:255
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - LocalServer32 - <no file>
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {FB858B22-55E2-413f-87F5-30ADC5552151} - c:\program files\plotsoft\pdfill\DownloadPDF.exe
LSP: c:\program files\f-secure\fsps\program\fslsp.dll
DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} - hxxp://office.microsoft.com/sites/production/ieawsdc32.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://go.microsoft.com/fwlink/?linkid=39204
DPF: {31435657-9980-0010-8000-00AA00389B71} - hxxp://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1316771810000
DPF: {78AF2F24-A9C3-11D3-BF8C-0060B0FCC122} - file:///C:/Program%20Files/MDT6/AcDcToday.ocx
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/products/plugin/1.4/jinstall-14_07-windows-i586.cab
DPF: {AE563720-B4F5-11D4-A415-00108302FDFD} - file:///C:/Program%20Files/MDT6/InstBanr.ocx
DPF: {C6637286-300D-11D4-AE0A-0010830243BD} - file:///C:/Program%20Files/MDT6/InstFred.ocx
DPF: {CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/products/plugin/1.4/jinstall-14_07-windows-i586.cab
DPF: {F281A59C-7B65-11D3-8617-0010830243BD} - file:///C:/Program%20Files/MDT6/AcPreview.ocx
TCP: Interfaces\{53B17D7E-5CF2-4909-AAF4-E5509B20B2FA} : NameServer = 194.247.192.33,194.247.191.1
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Notify: igfxcui - igfxdev.dll
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\29.0.1547.62\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
Hosts: 192.168.51.200 SME
.
============= SERVICES / DRIVERS ===============
.
R0 fsbts;fsbts;c:\windows\system32\drivers\fsbts.sys [2012-6-19 44240]
R0 FSFW;F-Secure Firewall Driver;c:\windows\system32\drivers\fsdfw.sys [2012-6-19 82192]
R1 F-Secure HIPS;F-Secure HIPS Driver;c:\program files\f-secure\hips\drivers\fshs.sys [2012-6-19 71568]
R2 F-Secure Gatekeeper Handler Starter;FSGKHS;c:\program files\f-secure\anti-virus\fsgk32st.exe [2012-6-19 220912]
R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2013-8-28 418376]
R2 TeamViewer7;TeamViewer 7;c:\program files\teamviewer\version7\TeamViewer_Service.exe [2012-2-20 3027840]
R3 F-Secure Gatekeeper;F-Secure Gatekeeper;c:\program files\f-secure\anti-virus\minifilter\fsgk.sys [2012-6-19 145856]
R3 F-Secure Network Request Broker;F-Secure Network Request Broker;c:\program files\f-secure\common\FNRB32.exe [2012-6-19 184048]
R3 FSORSPClient;F-Secure ORSP Client;c:\program files\f-secure\orsp client\fsorsp.exe [2012-6-19 60352]
R3 L1c;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\l1c51x86.sys [2011-5-31 61552]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-8-28 22856]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2011-5-31 2134256]
S2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2013-8-28 701512]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2013-1-8 161536]
S3 ivusb;Initio Driver for USB Default Controller;c:\windows\system32\drivers\ivusb.sys [2010-7-29 25112]
S3 massfilter;Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [2013-5-7 9216]
S3 ZTEusbnet;ZTE USB-NDIS miniport;c:\windows\system32\drivers\ZTEusbnet.sys [2013-5-7 114688]
S4 F-Secure Filter;F-Secure File System Filter;c:\program files\f-secure\anti-virus\win2k\fsfilter.sys [2012-6-19 40944]
S4 F-Secure Recognizer;F-Secure File System Recognizer;c:\program files\f-secure\anti-virus\win2k\fsrec.sys [2012-6-19 26352]
.
=============== File Associations ===============
.
FileExt: .scr: AutoCADScriptFile=c:\windows\NOTEPAD.EXE "%1"
FileExt: .ini: inifile=c:\windows\system32\NOTEPAD.EXE %1 [UserChoice]
.
=============== Created Last 30 ================
.
2013-09-03 06:21:04 -------- d-----w- c:\program files\Xenocode
2013-08-29 08:44:49 -------- d-----w- c:\documents and settings\user\local settings\application data\Deployment
2013-08-29 06:35:32 -------- d-----w- c:\documents and settings\all users\application data\Symantec
2013-08-29 05:44:12 -------- d-sh--w- c:\documents and settings\user\IECompatCache
2013-08-28 10:57:16 -------- d-----w- c:\program files\Defraggler
2013-08-28 09:02:00 -------- d-----w- c:\documents and settings\user\application data\Malwarebytes
2013-08-28 09:01:42 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes
2013-08-28 09:01:34 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-08-28 09:01:34 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-08-28 06:48:03 -------- d-----w- c:\program files\CCleaner
2013-08-27 12:02:46 -------- d-----w- C:\AdwCleaner
2013-08-22 10:53:16 -------- d-----w- c:\program files\CPUID
2013-08-22 07:56:42 -------- d-----w- c:\windows\ERUNT
2013-08-20 05:11:53 -------- d-----w- c:\windows\system32\MRT
2013-08-19 09:51:12 -------- d-----w- c:\windows\system32\wbem\repository\FS
2013-08-19 09:51:12 -------- d-----w- c:\windows\system32\wbem\Repository
2013-08-07 12:27:41 1128916 ----a-w- C:\pdf2wordsetup.exe
.
==================== Find3M ====================
.
2013-07-31 13:11:22 810496 ----a-w- c:\windows\system32\wmvdmod.dll
2013-07-26 02:47:17 920064 ----a-w- c:\windows\system32\wininet.dll
2013-07-26 02:47:13 43520 ------w- c:\windows\system32\licmgr10.dll
2013-07-26 02:47:12 1469440 ------w- c:\windows\system32\inetcpl.cpl
2013-07-25 15:52:59 385024 ------w- c:\windows\system32\html.iec
2013-07-10 10:37:53 406016 ----a-w- c:\windows\system32\usp10.dll
2013-07-04 03:03:25 2149888 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-07-04 02:08:30 2028544 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-06-07 21:56:06 920064 ----a-w- c:\windows\system32\wininet(3).dll
2013-06-07 21:56:06 25600 ----a-w- c:\windows\system32\jsproxy(2).dll
2013-06-07 21:56:06 1215488 ----a-w- c:\windows\system32\urlmon(3).dll
2013-06-07 21:56:06 105984 ----a-w- c:\windows\system32\url(3).dll
2013-06-07 21:56:05 184320 ----a-w- c:\windows\system32\iepeers(2).dll
.
============= FINISH: 11:18:04,75 ===============
mycity.rs/must-login.png

offline
  • Research Engineer @MalwareBytes
  • Pridružio: 09 Avg 2011
  • Poruke: 15877
  • Gde živiš: Beograd

U pravilima Ambulante pod tackom 9 stoji da ne pruzamo pomoc oko sluzbenih racunara. Firma na osnovu njih ostvaruje prihod, pa je red i da plati nekome da to sredi.

Pravilnik: http://www.mycity.rs/Ambulanta/Pravila-ovog-dela-foruma.html

offline
  • mile53 
  • Novi MyCity građanin
  • Pridružio: 28 Sep 2012
  • Poruke: 3

Razumem, ali to bi najpre bila pomoć meni u pokušaju da saznam što više o ovoj oblasti koja me i privatno dosta zanima. Molio bih da mi bar okvirno pomognete u kom pravcu bi trebalo traziti resenje.

Ko je trenutno na forumu
 

Ukupno su 1345 korisnika na forumu :: 46 registrovanih, 3 sakrivenih i 1296 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: 9k38, ajo baba, Alibaba1981, Andrija357, Areal84, bagor10, Brana01, bufanje, darkangel, DPera, draganl, drimer, FileFinder, gasha, ikan, jackreacher011011, janbo, Karla, kikisp, Krvava Devetka, kuntalo, kybonacci, ljuba, Mcdado, mercedesamg, Milos ZA, milutin134, mocnijogurt, naki011, nemkea71, nextyamb, panzerwaffe, pein, raptorsi, Romibrat, skvara, Srle993, suton, Toper, Trpe Grozni, Vlada78, wolf431, YugoSlav, zbazin, zlaya011, Zoca