MyCity » Ambulanta -> Arhiva Ambulante » Avast detektovao win32dropper-gen

Avast detektovao win32dropper-gen

Napisano na dan: 14.2.2015

Avast detektovao win32dropper-gen
Sledeća strana Pagination

Idi na vrh

Poslao: 14 Feb 2015 17:43
Idi na vrh
offline
  • v358 
  • Novi MyCity građanin
  • Pridružio: 29 Dec 2014
  • Poruke: 16

Avast je izbacio sledece obavestenje

pa bih hteo da znam, da li mi je racunar zarazen ?


Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 14-02-2015
Ran by v358win (administrator) on V358 on 14-02-2015 17:27:51
Running from C:\Users\v358win\Desktop
Loaded Profiles: v358win (Available profiles: v358win)
Platform: Windows 8.1 Pro (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Windows (R) Win 7 DDK provider) C:\Program Files\Bluetooth Suite\AdminService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Atheros) C:\Program Files\Bluetooth Suite\Ath_CoexAgent.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Qualcomm®Atheros®) C:\Program Files\Bluetooth Suite\BtvStack.exe
() C:\Program Files\Bluetooth Suite\ActivateDesktop.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ielowutil.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2531472 2014-12-13] (NVIDIA Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2015-01-27] (AVAST Software)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [408888 2014-10-08] (Power Software Ltd)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files\Bluetooth Suite\BtvStack.exe [132736 2013-09-25] ( (Qualcomm®Atheros®))
HKU\S-1-5-21-452044520-4055168981-2684586079-1001\...\Run: [MCShield Monitor] => C:\Program Files\MCShield\mcshieldrtm.exe [650816 2014-04-11] (MyCity)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [178632 2014-12-13] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [165760 2014-12-13] (NVIDIA Corporation)
Startup: C:\Users\v358win\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-452044520-4055168981-2684586079-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = msn.com/?ocid=iehp
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8

FireFox:
========
FF ProfilePath: C:\Users\v358win\AppData\Roaming\Mozilla\Firefox\Profiles\my7mt3gh.default
FF Plugin: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-12-29]
StartMenuInternet: FIREFOX.EXE - C:\Program Files\Mozilla Firefox\firefox.exe

Chrome:
=======
CHR Profile: C:\Users\v358win\AppData\Local\Google\Chrome\User Data\Profile 2
CHR Extension: (Google новчаник) - C:\Users\v358win\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-24]
CHR Profile: C:\Users\v358win\AppData\Local\Google\Chrome\User Data\Profile 5
CHR Extension: (Qualys BrowserCheck for Windows) - C:\Users\v358win\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\ejhnkognlohdkpjkjongioociddgoibk [2015-01-24]
CHR Extension: (Google новчаник) - C:\Users\v358win\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-24]
CHR Extension: (RSS Feed Reader) - C:\Users\v358win\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp [2015-01-24]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2014-12-29]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-12-29]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AtherosSvc; C:\Program Files\Bluetooth Suite\adminservice.exe [312448 2013-09-25] (Windows (R) Win 7 DDK provider)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-12-29] (AVAST Software)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [318568 2014-10-20] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1701520 2014-12-13] (NVIDIA Corporation)
S3 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5429520 2015-01-30] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-09-25] (Atheros) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-12-29] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-12-29] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-12-29] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-12-29] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-12-29] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-12-29] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-12-29] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-12-29] ()
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3859968 2013-08-15] (Qualcomm Atheros Communications, Inc.)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-09-25] (Qualcomm Atheros)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [465624 2014-12-30] (Realsil Semiconductor Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S3 VMSMP; \SystemRoot\system32\DRIVERS\vmswitch.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-14 17:27 - 2015-02-14 17:28 - 00011586 _____ () C:\Users\v358win\Desktop\FRST.txt
2015-02-14 17:27 - 2015-02-14 17:27 - 02134528 _____ (Farbar) C:\Users\v358win\Desktop\FRST64.exe
2015-02-10 14:17 - 2015-02-12 19:39 - 00000000 ____D () C:\Users\v358win\AppData\Roaming\CodeBlocks
2015-02-10 14:17 - 2015-02-10 14:17 - 00000000 ____D () C:\Users\v358win\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CodeBlocks
2015-02-10 14:17 - 2015-02-10 14:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeBlocks
2015-02-10 14:17 - 2015-02-10 14:17 - 00000000 ____D () C:\Program Files (x86)\CodeBlocks
2015-02-10 13:02 - 2015-02-10 13:02 - 00000000 ____D () C:\Users\v358win\AppData\Roaming\Dev-Cpp
2015-02-10 13:01 - 2015-02-10 13:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bloodshed Dev-C++
2015-02-10 13:01 - 2015-02-10 13:01 - 00000000 ____D () C:\Program Files (x86)\Dev-Cpp
2015-02-10 12:46 - 2015-02-10 12:46 - 00000000 ____D () C:\Users\v358win\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GCC 4.9.1
2015-02-10 12:45 - 2015-02-10 12:46 - 00000000 ____D () C:\MinGW
2015-02-09 14:51 - 2015-02-09 14:51 - 00023433 _____ () C:\Users\v358win\Documents\bookmarks_9.2.15..html
2015-02-08 22:29 - 2015-02-08 22:29 - 00481048 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-02-07 01:07 - 2015-02-14 16:59 - 00000000 ____D () C:\Users\v358win\AppData\Local\CrashDumps
2015-02-07 01:06 - 2015-02-07 01:06 - 00000000 ____D () C:\Users\v358win\AppData\Local\Foxit Reader
2015-02-02 21:51 - 2015-02-02 21:51 - 00000000 ____D () C:\Users\v358win\Documents\Fax
2015-02-01 22:02 - 2015-02-01 22:02 - 00000000 ____D () C:\Users\v358win\.pdfsam
2015-02-01 17:06 - 2015-02-01 17:09 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2015-02-01 17:06 - 2015-02-01 17:06 - 00001055 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-01-30 14:56 - 2015-01-30 14:56 - 00000000 ____D () C:\Users\v358win\Documents\OneNote Notebooks
2015-01-28 19:15 - 2015-01-28 19:15 - 00000000 ____D () C:\Users\v358win\AppData\Roaming\CrypTool
2015-01-28 19:15 - 2015-01-28 19:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrypTool
2015-01-20 18:32 - 2015-01-20 18:32 - 00000000 ____D () C:\Windows\Options
2015-01-20 18:32 - 2015-01-20 18:32 - 00000000 ____D () C:\Program Files (x86)\Qualcomm Atheros
2015-01-20 18:32 - 2013-08-27 23:42 - 00086035 ____N () C:\Windows\system32\athwbx.cat
2015-01-20 18:32 - 2013-08-15 20:13 - 03859968 ____N (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\athwbx.sys
2015-01-20 18:32 - 2013-08-15 20:13 - 03859968 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\Drivers\athwbx.sys
2015-01-20 18:31 - 2015-01-20 18:31 - 00000000 ____D () C:\ProgramData\Qualcomm Atheros
2015-01-17 21:41 - 2015-01-17 21:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP3
2015-01-15 22:32 - 2015-01-15 22:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniLyrics
2015-01-15 22:32 - 2015-01-15 22:32 - 00000000 ____D () C:\Program Files\MiniLyrics
2015-01-15 22:24 - 2015-01-15 22:27 - 00000000 ____D () C:\Program Files (x86)\MiniLyrics
2015-01-15 21:40 - 2015-01-15 22:32 - 00000000 ____D () C:\Users\v358win\AppData\Roaming\MiniLyrics

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-14 17:27 - 2014-12-29 20:38 - 00000000 ____D () C:\FRST
2015-02-14 17:12 - 2014-12-29 20:02 - 00000916 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-14 17:08 - 2014-12-30 15:53 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-02-14 17:04 - 2014-12-29 19:59 - 00003918 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{5612B485-2F60-425A-970D-56EC9D4E6179}
2015-02-14 17:00 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sru
2015-02-14 16:59 - 2015-01-11 14:24 - 00000000 ____D () C:\Users\v358win\AppData\Roaming\AIMP3
2015-02-14 16:59 - 2014-12-30 17:53 - 00000000 ____D () C:\Users\v358win\AppData\Roaming\BitTorrent
2015-02-14 13:37 - 2014-12-29 20:02 - 00000912 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-14 13:37 - 2014-12-29 19:56 - 00000000 __RDO () C:\Users\v358win\SkyDrive
2015-02-12 19:30 - 2013-08-22 15:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-02-12 12:08 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\NDF
2015-02-11 23:44 - 2014-12-29 19:54 - 00000000 ____D () C:\Users\v358win\AppData\Local\VirtualStore
2015-02-10 14:38 - 2014-12-29 20:03 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-452044520-4055168981-2684586079-1001
2015-02-10 12:48 - 2014-12-30 17:59 - 00000000 ____D () C:\Users\v358win\AppData\Local\Eclipse
2015-02-08 22:28 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2015-02-08 15:37 - 2014-12-31 13:59 - 00000000 ____D () C:\Users\v358win\Documents\Bluetooth Folder
2015-02-07 23:28 - 2013-09-30 05:14 - 00863592 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-02-07 00:07 - 2014-12-29 20:02 - 00003888 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-02-07 00:07 - 2014-12-29 20:02 - 00003652 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-02-01 22:02 - 2014-12-29 19:54 - 00000000 ____D () C:\Users\v358win
2015-02-01 16:38 - 2014-12-30 18:37 - 00000000 ____D () C:\Users\v358win\AppData\Roaming\Foxit Software
2015-01-31 12:57 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\AppReadiness
2015-01-20 21:26 - 2014-12-30 17:38 - 00000000 ____D () C:\ProgramData\MCShield
2015-01-20 18:32 - 2014-12-30 16:59 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-01-17 22:05 - 2014-12-30 18:05 - 00000000 ____D () C:\Users\v358win\AppData\Roaming\Skype
2015-01-17 21:40 - 2015-01-11 14:24 - 00000000 ____D () C:\Program Files\AIMP3
2015-01-17 21:38 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\LiveKernelReports
2015-01-16 19:24 - 2014-12-30 19:51 - 00000000 ____D () C:\Users\v358win\.android

==================== Files in the root of some directories =======

2014-12-30 17:01 - 2014-12-30 17:01 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-02-14 17:05

==================== End Of Log ============================
mycity.rs/must-login.png

Poslao: 15 Feb 2015 10:28
Idi na vrh
offline
  • Pridružio: 09 Avg 2011
  • Poruke: 15879
  • Gde živiš: Beograd

Pozdrav,

Ne vidim nista sumnjivo. Da li imas jos nekih problema ili samo ovo?

Poslao: 15 Feb 2015 11:18
Idi na vrh
offline
  • v358 
  • Novi MyCity građanin
  • Pridružio: 29 Dec 2014
  • Poruke: 16

Samo ovo sto je avast prijavio, skenirao sam ceo sistem sa malwarebytes ali nista nije pronasao.

Poslao: 15 Feb 2015 11:57
Idi na vrh
offline
  • Pridružio: 09 Avg 2011
  • Poruke: 15879
  • Gde živiš: Beograd

Da li znas sta je to CrypTool?

Poslao: 15 Feb 2015 12:58
Idi na vrh
offline
  • v358 
  • Novi MyCity građanin
  • Pridružio: 29 Dec 2014
  • Poruke: 16

Za sifrovanje i desifrovanje podataka, ja sam ga uglavno koristio za tekst (trebalo mi je nesto da odradim odmah pa nisam imao vremena da sam pisem kod za Cezarovu sifru i sifru zamene i jos neke) evo odakle sam preuzeo ovaj program cryptool.org/en/cryptool1-en

Poslao: 15 Feb 2015 13:16
Idi na vrh
offline
  • Pridružio: 09 Avg 2011
  • Poruke: 15879
  • Gde živiš: Beograd

Onda je to lazna detekcija.

MyCity » Ambulanta -> Arhiva Ambulante » Avast detektovao win32dropper-gen

Ko je trenutno na forumu
 

Ukupno su 1247 korisnika na forumu :: 47 registrovanih, 4 sakrivenih i 1196 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: A.R.Chafee.Jr., ajo baba, amaterSRB, armor, Atomski čoban, bojank, BORUTUS, Buzdovan, cavatina, cenejac111, Dorcolac, dule10savic, Futurama, goxin, ILGromovnik, Istman, Ivan Campo, JimmyNapoli, Još malo pa deda, Kaplar2, Karla, kokodakalo, Krusarac, Krvava Devetka, kuntalo, Luka1998, mikrimaus, mile23, milimoj, moldway, mrav pesadinac, Nemanja.M, NoOneEver Dreams, Oscar2, ozzy, Rakenica, raso7, Regrut Boskica, Shinobi, Srki94, stankolich, Tvrtko I, Wrangler, zdrebac, zeo, Žrnov, žeks62