MyCity » Ambulanta -> Arhiva Ambulante » Provera kompjutera

Provera kompjutera

Napisano na dan: 25.12.2016

Provera kompjutera
Sledeća strana Pagination

Idi na vrh

Poslao: 25 Dec 2016 14:25
Idi na vrh
offline
  • Marko
  • Pridružio: 30 Maj 2013
  • Poruke: 424
  • Gde živiš: U kući

Pozdrav, duze vreme nisam proverio kompjuter od malwarea i ostalog, pa je red da to i uradim. Inace imam ESET NOD32 antivirus, skenirao sam i ne detektuje nista. Takodje, koristim Mozillu pa bih postavio sliku da me posavetujete sta da iskljucim od add-onsa.


A evo i izvestaja:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-12-2016
Ran by Home (administrator) on HOME-PC (25-12-2016 14:17:36)
Running from C:\Users\Home\Desktop
Loaded Profiles: Home (Available Profiles: Home)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: engleski (SAD)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\Bluestacks\HD-LogRotatorService.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\NlsSrv32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.2.1.1\Lightshot.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [] => [X]
HKLM\...\Run: [ctfmon] => C:\Windows\system32\CTFMON.EXE [9728 2009-07-14] (Microsoft Corporation)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226560 2014-11-18] ()
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - %SystemRoot%\system32\wpdshserviceobj.dll (Microsoft Corporation)
Startup: C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ctfmon.exe - prečica.lnk [2016-02-28]
ShortcutTarget: ctfmon.exe - prečica.lnk -> C:\Windows\System32\ctfmon.exe (Microsoft Corporation)
GroupPolicy\User: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 127.0.0.1 mpa.one.microsoft.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{A2EEAB71-9E59-4F0A-A90F-D432E29D2661}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-3145937626-3286986765-835811450-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-01-21] (Microsoft Corporation)
BHO: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation)
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-01-21] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-04-26] (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-26] (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2016-02-01] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\qu0bovtz.default-1434458251051 [2016-12-25]
FF NewTab: Mozilla\Firefox\Profiles\qu0bovtz.default-1434458251051 -> www.google.rs
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\qu0bovtz.default-1434458251051 -> Google (Default)
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\qu0bovtz.default-1434458251051 -> Search Provided by Yahoo
FF Homepage: Mozilla\Firefox\Profiles\qu0bovtz.default-1434458251051 -> www.google.rs
FF Extension: (New Tab Tools) - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\qu0bovtz.default-1434458251051\Extensions\newtabtools@darktrojan.net.xpi [2016-11-09]
FF Extension: (Price Rocket) - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\qu0bovtz.default-1434458251051\Extensions\support@pricerocket.net.xpi [2015-11-01]
FF Extension: (FlashGot) - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\qu0bovtz.default-1434458251051\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2016-12-02]
FF SearchPlugin: C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\qu0bovtz.default-1434458251051\searchplugins\google-default.xml [2016-01-05]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_186.dll [2016-12-14] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_186.dll [2016-12-14] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1220162.dll [2015-08-31] (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2016-10-06] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-26] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-26] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll [2011-12-09] (Nullsoft, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Home\AppData\Roaming\mozilla\plugins\np-mswmp.dll [2009-09-25] (Microsoft Corporation)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.rs/
CHR DefaultSearchURL: Default -> hxxps://us.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wny_dnldastr_16_07_newdop&param1=1&param2=f%3D4%26b%3DChrome%26cc%3Drs%26pa%3DWinYahoo%26cd%3D2XzuyEtN2Y1L1QzutAtDzzyD0AzyyEzz0D0Czy0CyEzy0EtCtN0D0Tzu0StCyDtDzytN1L2XzutAtFtCyBtFzytFtDtN1L1Czu1BtBtN1L1G1B1V1N2Y1L1Qzu2StCyByDtAtDyByDtCtGyBzy0C0AtGyC0C0DyEtGtCyE0BzztGtA0ByB0FtA0EyEtB0EyByB0D2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EtC0AyCtAzytAzztGzz0EtBtBtGyE0E0FyEtGzzyBtC0BtG0A0CtD0B0A0B0ByCyEyEyE0C2QtN0A0LzutB%26cr%3D1609881185%26a%3Dwny_dnldastr_16_07_newdop%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
CHR DefaultSearchKeyword: Default -> search provided by yahoo.com
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms}
CHR Profile: C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default [2016-12-24]
CHR Extension: (New Tab Redirect) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\icpgjfneehieebagbmdbhnlpiopdcmna [2016-06-19]
CHR Extension: (Плаћања у Chrome веб-продавници) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-04]
CHR Extension: (Chrome Media Router) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-21]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BstHdAndroidSvc; C:\Program Files (x86)\Bluestacks\HD-Service.exe [486936 2016-12-13] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\Bluestacks\HD-LogRotatorService.exe [470552 2016-12-13] (BlueStack Systems, Inc.)
S3 BstHdPlusAndroidSvc; C:\Program Files (x86)\Bluestacks\HD-Plus-Service.exe [511512 2016-12-13] (BlueStack Systems, Inc.)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [174624 2014-10-14] (EasyAntiCheat Ltd)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2770312 2016-11-16] (ESET)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23816 2015-04-30] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366544 2015-04-30] (Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7248144 2016-08-08] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 3xHybr64; C:\Windows\System32\DRIVERS\3xHybr64.sys [873216 2007-04-20] (Philips Semiconductors GmbH)
S3 BstHdDrv; C:\Program Files (x86)\Bluestacks\HD-Hypervisor-amd64.sys [152672 2016-12-13] (BlueStack Systems)
S3 BstkDrv; C:\Program Files (x86)\Bluestacks\BstkDrv.sys [270904 2016-11-08] (Bluestack System Inc. )
R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-10-19] (Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [262792 2016-11-16] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [197248 2016-11-16] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [181384 2016-11-16] (ESET)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [18528 2014-11-18] ()
S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [14944 2014-11-18] ()
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [10848 2014-11-18] ()
S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [10208 2014-11-18] ()
S3 gMouUsb; C:\Windows\System32\DRIVERS\gMouUsb.sys [14336 2016-08-23] ()
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [129224 2016-08-23] (Qualcomm Atheros Co., Ltd.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [280376 2015-03-04] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124568 2015-03-04] (Microsoft Corporation)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16056 2016-12-19] (SlimWare Utilities, Inc.)
U5 UnlockerDriver5; D:\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-12-25 14:17 - 2016-12-25 14:19 - 00013779 _____ C:\Users\Home\Desktop\FRST.txt
2016-12-25 14:17 - 2016-12-25 14:17 - 00000000 ____D C:\FRST
2016-12-25 14:14 - 2016-12-25 14:15 - 02420736 _____ (Farbar) C:\Users\Home\Desktop\FRST64.exe
2016-12-23 17:21 - 2016-12-23 17:22 - 00000000 ____D C:\Users\Home\AppData\Local\Troubleshooter
2016-12-23 17:08 - 2016-11-23 14:37 - 00000570 _____ C:\Users\Home\AppData\Local\TroubleshooterConfig.json
2016-12-23 17:05 - 2016-12-23 17:05 - 00001632 _____ C:\ProgramData\Microsoft\Windows\Start Menu\BlueStacks.lnk
2016-12-23 16:58 - 2016-12-23 16:58 - 00000000 ____D C:\Users\Home\AppData\Local\Bluestacks
2016-12-23 16:55 - 2016-12-23 17:05 - 00000000 ____D C:\Program Files (x86)\Bluestacks
2016-12-19 19:37 - 2016-12-19 19:37 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-12-19 19:37 - 2000-01-01 01:00 - 02825944 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2016-12-19 19:11 - 2016-12-19 19:11 - 00000000 ____D C:\ProgramData\SlimWare Utilities, Inc
2016-12-19 19:05 - 2016-12-19 19:39 - 00016056 _____ (SlimWare Utilities, Inc.) C:\Windows\system32\Drivers\SWDUMon.sys
2016-12-19 19:05 - 2016-12-19 19:05 - 00000000 ____D C:\Users\Home\AppData\Local\Downloaded Installers
2016-12-19 18:01 - 2016-12-19 18:01 - 00000000 ____D C:\ProgramData\BlueStacksGameManager.old
2016-12-19 18:00 - 2016-12-19 18:00 - 00000000 ____D C:\Program Files (x86)\BlueStacks.old
2016-12-17 16:57 - 2016-12-17 17:01 - 00000000 ____D C:\ProgramData\HitmanPro
2016-11-29 15:36 - 2016-11-29 15:36 - 00001119 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-11-29 15:36 - 2016-11-29 15:36 - 00001107 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-11-29 15:35 - 2016-12-17 15:56 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-12-25 14:15 - 2013-06-29 12:14 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-12-25 14:04 - 2016-11-16 14:59 - 00000000 ____D C:\Users\Home\AppData\LocalLow\Mozilla
2016-12-25 14:00 - 2013-09-30 08:25 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-12-25 13:58 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-12-24 21:05 - 2009-07-14 05:45 - 00020832 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-12-24 21:05 - 2009-07-14 05:45 - 00020832 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-12-24 20:49 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-12-24 20:06 - 2015-07-01 18:52 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2016-12-23 17:13 - 2016-02-27 17:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 10.8
2016-12-23 17:05 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Public\Libraries
2016-12-19 19:05 - 2016-08-23 11:33 - 00000000 ____D C:\Users\Home\AppData\Local\SlimWare Utilities Inc
2016-12-19 19:04 - 2016-08-23 11:33 - 00000000 ____D C:\Users\Public\Documents\Downloaded Installers
2016-12-19 18:57 - 2013-07-30 18:46 - 00000000 ____D C:\Users\Home\AppData\Roaming\Disk Cleaner
2016-12-19 18:04 - 2015-09-23 16:49 - 00000000 ____D C:\ProgramData\KONAMI
2016-12-19 17:57 - 2016-08-18 18:31 - 00000000 ___RD C:\Sandbox
2016-12-19 17:51 - 2016-08-23 13:32 - 00000364 _____ C:\Windows\Tasks\SlimCleaner Plus (Scheduled Scan - Home).job
2016-12-18 16:44 - 2014-06-10 19:15 - 00000000 ____D C:\Users\Home\AppData\Roaming\uTorrent
2016-12-17 16:50 - 2014-03-27 20:00 - 00000000 ____D C:\Users\Home\Desktop\Skice
2016-12-17 16:48 - 2016-02-27 12:10 - 00000000 ____D C:\Windows\System32\Tasks\Auslogics
2016-12-17 16:22 - 2016-05-11 08:00 - 00003202 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1d15e92b88e8ff0
2016-12-17 16:22 - 2013-09-30 08:25 - 00003330 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-12-17 16:13 - 2016-07-11 10:34 - 00000655 _____ C:\DelFix.txt
2016-12-17 15:56 - 2016-11-16 08:30 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-12-15 16:15 - 2014-05-17 20:14 - 00002157 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-14 14:35 - 2009-07-14 06:13 - 00782578 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-14 07:17 - 2013-06-29 12:14 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-12-14 07:16 - 2013-04-01 16:00 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-12-14 07:16 - 2013-04-01 16:00 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-12-14 07:16 - 2013-04-01 16:00 - 00000000 ____D C:\Windows\system32\Macromed
2016-12-14 07:15 - 2013-04-01 16:00 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-12-12 20:29 - 2016-05-14 13:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mount&Blade Warband
2016-12-07 15:12 - 2013-04-02 18:09 - 00000000 ____D C:\Users\Home\AppData\Roaming\Skype
2016-11-29 16:11 - 2016-01-05 11:05 - 00000000 ____D C:\Users\Home\AppData\Local\Windows Live
2016-11-29 16:08 - 2015-06-04 11:17 - 00000000 ___RD C:\Users\Home\Desktop\Ikonice
2016-11-29 15:42 - 2014-06-01 20:29 - 00000000 ____D C:\Users\Home\AppData\Roaming\Origin

==================== Files in the root of some directories =======

2016-10-02 13:59 - 2016-10-02 17:24 - 139571200 _____ (Adobe System Incorporated) C:\Users\Home\AppData\Roaming\Adobe Flashplayer Service.exe
2015-04-22 20:43 - 2015-04-22 20:44 - 0027136 ___SH () C:\Users\Home\AppData\Roaming\Thumbs.db
2014-11-22 21:03 - 2014-11-22 21:03 - 0018363 _____ () C:\Users\Home\AppData\Roaming\UserTile.png
2014-08-26 18:05 - 2014-08-26 18:05 - 0004608 _____ () C:\Users\Home\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-07-30 18:32 - 2016-11-24 15:59 - 0007600 _____ () C:\Users\Home\AppData\Local\resmon.resmoncfg
2016-12-23 17:08 - 2016-11-23 14:37 - 0000570 _____ () C:\Users\Home\AppData\Local\TroubleshooterConfig.json
2014-08-17 15:35 - 2014-08-17 15:35 - 0000003 _____ () C:\Users\Home\AppData\Local\updater.log
2014-08-17 15:35 - 2015-04-23 16:43 - 0000424 _____ () C:\Users\Home\AppData\Local\UserProducts.xml
2015-02-22 19:06 - 2015-02-22 19:06 - 0000111 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2016-12-23 19:17

==================== End of FRST.txt ============================


https://www.mycity.rs/must-login.png

Poslao: 25 Dec 2016 19:37
Idi na vrh
offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

U izvještajima ne vidim ništa sporno.


Sledeća procedura će implementirati završno čišćenje.

Arrow Preuzmi "Xplode"-ov DelFix alat i snimi ga na Desktop.
Dvoklikom pokreni alat i štikliraj kućice ispred sledećih opcija;

Remove disinfection tools
Create registry backup
Purge System Restore

Klikni na dugme Run i pričekaj trenutak dok alat ne završi svoj rad.
Od ovog trenutka, svi korišćeni alati u ovoj temi bi trebali biti obrisani.
Alat će takođe formirati izveštaj za tebe. (C:\DelFix.txt)

Alat će snimiti i zdravo stanje registy-ja i napraviti backup koristeci integrisan program "ERUNT" u %windir%\ERUNT\DelFix
Alat briše stare system restore tačke i pravi novu, svežu tačku nakon čišćenja.




Arrow

Na slici si uslikao koji su plug-inovi dostupni i oni se pokreću samo kad trebaju, npr. Flash Player. Što se ekstenzija tiče, njih nisi uslikao, te stoga otvori temu u
http://www.mycity.rs/Web-browseri/.
Ja ti mogu jedino dati savjet da probaš 64-bitnu verziju Firefoxa.

MyCity » Ambulanta -> Arhiva Ambulante » Provera kompjutera

Ko je trenutno na forumu
 

Ukupno su 894 korisnika na forumu :: 38 registrovanih, 7 sakrivenih i 849 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: _Rade, amonsrb, Andrija357, Apok, Atomski čoban, babaroga, BlekMen, bojanM84, Bubimir, cavatina, cinoeye, darios, Denaya, Frunze, Georgius, h8propaganda, Još malo pa deda, kunktator, Lubica, Lucije Kvint, Mi lao shu, MilosKop, nemkea71, NoOneEver Dreams, pein, pera12345, RJ, Rogan33, royst33, shone34, sokars, Steeeefan, t84dar, tubular, vaso1, yrraf, |_MeD_|, šumar bk2