Problem plavi ekran.

Problem plavi ekran.

offline
  • lisnik 
  • Novi MyCity građanin
  • Pridružio: 20 Jan 2012
  • Poruke: 11

Poz.. ekipa.Dosad sam rjesio dva problema uz pomoc ekipe.Sad imam i treci.Desava se da iz cista mira poplavi ekran.Zatim se komp. resatartuje i opet normalno radi neko vrijeme.
Kad se ponovo upali pojavi se ovakva poruka o problemu.Nadam se da ce ekipa i ovaj put uspjesno pomoci da rijesim problem.Unaprijed hvala na pomoci.

Naziv događaja koji opisuje problem: BlueScreen
Verzija OS-a: 6.1.7601.2.1.0.256.1
ID regionalnih postavki: 5146

Dodatne informacije o problemu:
BCCode: 7a
BCP1: FFFFF6FC40009AA0
BCP2: FFFFFFFFC000000E
BCP3: 000000013D4EE860
BCP4: FFFFF88001354E50
OS Version: 6_1_7601
Service Pack: 1_0
Product: 256_1

Datoteke koje pomažu pri opisu problema:
C:\Windows\Minidump\091216-18439-01.dmp
C:\Users\lisnik\AppData\Local\Temp\WER-52260-0.sysdata.xml

Našu izjavu o zaštiti privatnosti pročitajte na internetu:
go.microsoft.com/fwlink/?linkid=104288&clcid=0x041a

Ako izjava o zaštiti privatnosti nije dostupna na internetu, pročitajte je izvanmrežno:
C:\Windows\system32\hr-HR\erofflps.txt

offline
  • Pridružio: 02 Jan 2008
  • Poruke: 2167

Zamolicu te da ispratis uputstvo o otvaranju teme u Ambulanti

http://www.mycity.rs/Ambulanta/Kako-otvoriti-temu-u-Ambulanti.html

offline
  • lisnik 
  • Novi MyCity građanin
  • Pridružio: 20 Jan 2012
  • Poruke: 11

Napisano: 12 Sep 2016 18:58

Malo sam pozurio.Mislim da bi trebalo ici ovako.Nadam se da je sad ispravna poruka.


mycity.rs/must-login.png



mycity.rs/must-login.png

Dopuna: 12 Sep 2016 19:04

Neznam koji je nacin ispravniji pa da posaljem i iskopiran tekst.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 31-08-2016
Ran by lisnik (administrator) on LISNIK-PC (12-09-2016 18:44:42)
Running from C:\Users\lisnik\Downloads
Loaded Profiles: lisnik (Available Profiles: lisnik)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Engleski (Sjedinjene Države)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Windows\System32\WerFault.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-14] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1767944 2016-06-14] (NVIDIA Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKU\S-1-5-21-1363038315-2344591806-1932542725-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [29502592 2016-07-14] (Skype Technologies S.A.)
HKU\S-1-5-21-1363038315-2344591806-1932542725-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4295360 2016-06-08] (Disc Soft Ltd)
HKU\S-1-5-21-1363038315-2344591806-1932542725-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8722136 2016-06-01] (Piriform Ltd)
HKU\S-1-5-21-1363038315-2344591806-1932542725-1000\...\MountPoints2: {4b1ed0e5-3e05-11e6-ad72-00241dabd165} - L:\setup.exe
HKU\S-1-5-21-1363038315-2344591806-1932542725-1000\...\MountPoints2: {7880578a-3cfd-11e6-b01c-00241dabd165} - K:\setup.exe
HKU\S-1-5-21-1363038315-2344591806-1932542725-1000\...\MountPoints2: {d80e39f5-36b8-11e6-ab4e-00241dabd165} - F:\Startme.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2016-06-15] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{5F361E89-396E-4B06-B3BB-6E4735CBA0F8}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-1363038315-2344591806-1932542725-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_101\bin\ssv.dll [2016-07-27] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-07-27] (Oracle Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Corporation)

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-07-27] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-07-27] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-01-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-01-29] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-06-23] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1363038315-2344591806-1932542725-1000: @nsroblox.roblox.com/launcher -> C:\Users\lisnik\AppData\Local\Roblox\Versions\version-256edf8e82cb478d\\NPRobloxProxy.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-1363038315-2344591806-1932542725-1000: @nsroblox.roblox.com/launcher64 -> C:\Users\lisnik\AppData\Local\Roblox\Versions\version-256edf8e82cb478d\\NPRobloxProxy64.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-1363038315-2344591806-1932542725-1000: SkypePlugin -> C:\Users\lisnik\AppData\Local\SkypePlugin\7.23.0.54\npGatewayNpapi.dll [2016-08-11] (Skype Technologies S.A.)
FF Plugin HKU\S-1-5-21-1363038315-2344591806-1932542725-1000: SkypePlugin64 -> C:\Users\lisnik\AppData\Local\SkypePlugin\7.23.0.54\npGatewayNpapi-x64.dll [2016-08-11] (Skype Technologies S.A.)

Chrome:
=======
CHR HomePage: Default -> hxxp://%66%65%65%64.%73%6E%61%70%64%6F.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIP4NYe17aVLWqePRm9wWNFlj_HUwTrFK2grUOsGfpgisbw09SCG1ePkY6HvYreUUtcqukCBnBOKwOEB-_l__nimFrZ1Kddm6CHi-LkZ3PJPl-UpPisf3qn75jJ9bGMnhw6yZK74heHLMNu4Bma3dqs-2IAlPbIaoFlbEw7OOVltUqM1g
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Profile: C:\Users\lisnik\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google disk) - C:\Users\lisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-14]
CHR Extension: (YouTube) - C:\Users\lisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-14]
CHR Extension: (Tampermonkey) - C:\Users\lisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2016-09-06]
CHR Extension: (Google dokumenti izvanmrežno) - C:\Users\lisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-14]
CHR Extension: (Putovanje Međuzemljem) - C:\Users\lisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjgkjeheegjnnmheaflhdocglkiegoni [2016-06-14]
CHR Extension: (Roomstyler 3D planner) - C:\Users\lisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfnniehafojoidolddmhfnpnbiolbppi [2016-06-14]
CHR Extension: (Lady Popular) - C:\Users\lisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnamdlacgipmoldlhfgjficjiclhgibm [2016-06-14]
CHR Extension: (Autodesk Homestyler) - C:\Users\lisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdmmkfaghgcicheaimnpffeeekheafkb [2016-08-17]
CHR Extension: (Webcam Toy) - C:\Users\lisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade [2016-06-14]
CHR Extension: (Top Eleven) - C:\Users\lisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljphpjlafmmdmegmfbkacafhbegjfkkn [2016-06-14]
CHR Extension: (Planner 5D - Interior Design) - C:\Users\lisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcafejemebbngbglfoinpoaannbihjna [2016-09-07]
CHR Extension: (Plaćanja u web-trgovini Chrome) - C:\Users\lisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-14]
CHR Extension: (Gmail) - C:\Users\lisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-14]
CHR Extension: (Chrome Media Router) - C:\Users\lisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-11]
CHR Extension: (Pozivanje putem servisa Skype) - C:\Users\lisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\poghlonenmjdkfghdpfomojhhfggildk [2016-08-26]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1458368 2016-06-08] (Disc Soft Ltd)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2519904 2016-04-13] (ESET)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712 2016-06-14] (NVIDIA Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-06-14] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-06-14] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-06-14] (NVIDIA Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-06-21] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-06-21] (Disc Soft Ltd)
R3 e1kexpress; C:\Windows\System32\DRIVERS\e1k60x64.sys [220672 2009-06-10] (Intel Corporation)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [264552 2016-05-12] (ESET)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [186784 2016-05-12] (ESET)
R2 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [170792 2016-05-12] (ESET)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-06-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-09-12 18:44 - 2016-09-12 18:45 - 00012803 _____ C:\Users\lisnik\Downloads\FRST.txt
2016-09-12 18:44 - 2016-09-12 18:44 - 00000000 ____D C:\FRST
2016-09-12 18:43 - 2016-09-12 18:44 - 02397696 _____ (Farbar) C:\Users\lisnik\Downloads\FRST64.exe
2016-09-12 17:47 - 2016-09-12 17:47 - 00301208 _____ C:\Windows\Minidump\091216-18439-01.dmp
2016-09-11 14:44 - 2014-05-14 18:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-09-11 14:44 - 2014-05-14 18:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-09-11 14:44 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-09-11 14:44 - 2014-05-14 18:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-09-11 14:44 - 2014-05-14 18:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-09-11 14:44 - 2014-05-14 18:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-09-11 14:44 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-09-11 14:44 - 2014-05-14 18:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-09-11 14:44 - 2014-05-14 18:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-09-11 14:44 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-09-11 14:43 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-09-11 14:43 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-09-11 14:43 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-09-11 14:43 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-09-11 14:33 - 2016-09-11 14:33 - 00301232 _____ C:\Windows\Minidump\091116-21777-01.dmp
2016-09-11 11:24 - 2016-09-11 11:24 - 00285888 _____ C:\Windows\Minidump\091116-16411-01.dmp
2016-09-10 11:51 - 2016-09-10 11:51 - 00301192 _____ C:\Windows\Minidump\091016-18298-01.dmp
2016-09-06 15:51 - 2016-09-06 15:51 - 00284728 _____ C:\Windows\Minidump\090616-17253-01.dmp
2016-09-06 15:32 - 2016-09-06 15:32 - 00293528 _____ C:\Windows\Minidump\090616-21699-01.dmp
2016-09-06 12:02 - 2016-09-06 12:02 - 00293168 _____ C:\Windows\Minidump\090616-15178-01.dmp
2016-09-05 20:32 - 2016-09-05 20:32 - 00284728 _____ C:\Windows\Minidump\090516-20872-01.dmp
2016-08-30 12:13 - 2016-08-30 12:13 - 00000000 ____D C:\Users\lisnik\AppData\LocalLow\uTorrent
2016-08-30 10:01 - 2016-08-30 10:01 - 00291936 _____ C:\Windows\Minidump\083016-22510-01.dmp
2016-08-29 09:13 - 2016-08-29 09:13 - 00284784 _____ C:\Windows\Minidump\082916-20186-01.dmp
2016-08-29 09:10 - 2016-08-29 09:10 - 00331744 _____ C:\Windows\Minidump\082916-19125-01.dmp
2016-08-29 09:05 - 2016-08-29 09:05 - 00287584 _____ C:\Windows\Minidump\082916-19453-01.dmp
2016-08-29 09:02 - 2016-08-29 09:02 - 00285952 _____ C:\Windows\Minidump\082916-18345-01.dmp
2016-08-29 09:00 - 2016-08-29 09:00 - 00293496 _____ C:\Windows\Minidump\082916-19827-01.dmp
2016-08-28 09:23 - 2016-08-28 09:23 - 00287664 _____ C:\Windows\Minidump\082816-19593-01.dmp
2016-08-27 12:35 - 2016-09-12 17:47 - 404444791 _____ C:\Windows\MEMORY.DMP
2016-08-27 12:35 - 2016-08-27 12:35 - 00301240 _____ C:\Windows\Minidump\082716-18345-01.dmp
2016-08-26 20:54 - 2016-08-26 20:54 - 00000000 ____D C:\Users\lisnik\AppData\Local\SkypePlugin
2016-08-26 20:52 - 2016-08-26 20:53 - 13836288 _____ C:\Users\lisnik\Downloads\SkypeWebPlugin.msi
2016-08-19 18:42 - 2016-08-19 18:42 - 00304531 _____ C:\Users\lisnik\Downloads\XRay-33.jar
2016-08-14 19:26 - 2016-08-14 19:26 - 00001945 _____ C:\Users\lisnik\Downloads\gkplugins-helper.user.js

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-09-12 18:03 - 2016-06-14 21:46 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-09-12 17:53 - 2009-07-14 06:45 - 00019680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-09-12 17:53 - 2009-07-14 06:45 - 00019680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-09-12 17:49 - 2016-06-16 13:08 - 00000000 ____D C:\Users\lisnik\AppData\Roaming\Skype
2016-09-12 17:48 - 2016-06-14 21:46 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-09-12 17:48 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-09-12 17:47 - 2016-06-15 23:02 - 00000000 ____D C:\Windows\Minidump
2016-09-12 17:47 - 2016-06-14 22:22 - 00000000 ____D C:\ProgramData\NVIDIA
2016-09-12 17:00 - 2016-06-15 18:41 - 00000000 ____D C:\Users\lisnik\AppData\Roaming\.minecraft
2016-09-12 10:06 - 2016-07-03 12:49 - 00000000 ____D C:\Users\lisnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2016-09-12 00:13 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2016-09-11 21:22 - 2016-06-16 13:08 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-09-11 21:22 - 2016-06-14 23:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-09-11 21:22 - 2016-06-14 23:00 - 00000000 ____D C:\Users\lisnik\AppData\Local\NVIDIA
2016-09-11 21:22 - 2016-06-14 22:22 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-09-11 21:22 - 2016-06-14 22:22 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-09-11 21:22 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2016-09-11 21:22 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-09-11 21:22 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-09-11 21:21 - 2016-06-16 13:07 - 00000000 ____D C:\ProgramData\Skype
2016-09-11 21:20 - 2016-07-11 14:20 - 00000000 ____D C:\Program Files (x86)\Steam
2016-09-11 11:24 - 2016-06-14 22:22 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-09-11 11:24 - 2016-06-14 21:44 - 00000000 ____D C:\Users\lisnik
2016-09-10 00:32 - 2016-07-19 16:41 - 00000000 ____D C:\Users\lisnik\AppData\Local\NVIDIA Corporation
2016-09-06 12:02 - 2009-07-14 07:08 - 00032568 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-09-06 06:30 - 2016-07-21 10:51 - 00000000 ____D C:\Users\lisnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft
2016-09-06 06:30 - 2016-06-15 18:30 - 00000000 ____D C:\Users\lisnik\AppData\Roaming\uTorrent
2016-09-02 16:48 - 2016-07-29 12:17 - 00000000 ____D C:\Users\lisnik\AppData\Local\CrashDumps
2016-08-23 10:58 - 2016-07-09 16:44 - 00000000 ____D C:\Users\lisnik\AppData\Local\Microsoft Games
2016-08-14 21:46 - 2016-08-03 18:56 - 00000000 ____D C:\Users\lisnik\AppData\Roaming\TS3Client

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-06-15 10:43

==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-08-2016
Ran by lisnik (12-09-2016 18:45:33)
Running from C:\Users\lisnik\Downloads
Windows 7 Ultimate Service Pack 1 (X64) (2016-06-14 19:43:09)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1363038315-2344591806-1932542725-500 - Administrator - Disabled)
Guest (S-1-5-21-1363038315-2344591806-1932542725-501 - Limited - Disabled)
lisnik (S-1-5-21-1363038315-2344591806-1932542725-1000 - Administrator - Enabled) => C:\Users\lisnik

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET NOD32 Antivirus 9.0.381.1 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET NOD32 Antivirus 9.0.381.1 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1363038315-2344591806-1932542725-1000\...\uTorrent) (Version: 3.4.7.42330 - BitTorrent Inc.)
Adobe Reader XI (11.0.17) - Croatian (HKLM-x32\...\{AC76BA86-7AD7-1050-7B44-AB0000000001}) (Version: 11.0.17 - Adobe Systems Incorporated)
CCleaner (HKLM\...\CCleaner) (Version: 5.18 - Piriform)
Counter-Strike (HKLM\...\Steam App 10) (Version: - Valve)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0191 - Disc Soft Ltd)
ESET NOD32 Antivirus (HKLM\...\{C083AF84-2CAD-4219-A493-09076618C16C}) (Version: 9.0.381.1 - ESET, spol. s r.o.)
Euro Truck Simulator 2 (HKLM\...\Steam App 227300) (Version: - SCS Software)
EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 52.0.2743.116 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Java 8 Update 101 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games)
League of Legends (x32 Version: 4.1.2 - Riot Games) Hidden
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Minecraft1.8 (HKLM-x32\...\Minecraft1.8) (Version: - )
NVIDIA 3D Vision Controller Driver 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 341.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 341.95 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.0 - NVIDIA Corporation)
NVIDIA Graphics Driver 341.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.95 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
paint.net (HKLM\...\{DD393E4D-76FA-4CCD-84F3-CD9D75C14862}) (Version: 4.0.10 - dotPDN LLC)
ROBLOX Player for lisnik (HKU\S-1-5-21-1363038315-2344591806-1932542725-1000\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.4.0 - NVIDIA Corporation) Hidden
Skype Web Plugin (HKLM-x32\...\{0A95D1F2-BF33-43E7-A32B-E8089182EAE7}) (Version: 7.23.0.54 - Skype Technologies S.A.)
Skype™ 7.26 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.26.101 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
Windows 10 Upgrade Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17332 - Microsoft Corporation)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1363038315-2344591806-1932542725-1000_Classes\CLSID\{49ACECA8-A1DF-467E-8FED-CCC810B1434E}\localserver32 -> C:\Users\lisnik\AppData\Local\SkypePlugin\7.23.0.54\GatewayVersion-x64.exe (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-1363038315-2344591806-1932542725-1000_Classes\CLSID\{7E3A041F-59E4-45ED-85BB-0DC57685CC7B}\InprocServer32 -> C:\Users\lisnik\AppData\Local\SkypePlugin\7.23.0.54\GatewayActiveX-x64.dll (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-1363038315-2344591806-1932542725-1000_Classes\CLSID\{CBF9CD8C-2714-4F36-B76A-43E6C7547BC2}\localserver32 -> C:\Users\lisnik\AppData\Local\SkypePlugin\7.23.0.54\EdgeCalling.exe (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-1363038315-2344591806-1932542725-1000_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\lisnik\AppData\Local\Roblox\Versions\version-256edf8e82cb478d\RobloxProxy64.dll (ROBLOX Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {02E7D1EA-E079-4501-80F9-D56984C54FD1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-14] (Google Inc.)
Task: {399C320C-B1B9-4FB2-A47F-7C7D4DE921C8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-14] (Google Inc.)
Task: {A690C707-7D2B-4395-B2DF-DB8F2052AB8E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-06-01] (Piriform Ltd)
Task: {CBC827C4-D3F5-4005-9BB5-18C73D0729F0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\lisnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft\Minecraft Debugger.lnk -> C:\Users\lisnik\AppData\Roaming\.minecraft\minecraft launcher\Debug.bat ()

==================== Loaded Modules (Whitelisted) ==============

2016-06-14 22:22 - 2016-01-29 12:49 - 00135224 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-07-27 00:01 - 2016-06-14 22:03 - 00367552 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2016-07-27 00:01 - 2016-06-14 22:03 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-07-27 00:01 - 2016-06-14 22:03 - 03611584 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-07-27 00:01 - 2016-06-14 22:03 - 00288192 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-07-27 00:01 - 2016-06-14 22:03 - 02665920 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-07-27 00:01 - 2016-06-14 22:03 - 01988544 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-07-27 00:01 - 2016-06-14 22:03 - 01840576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-07-27 00:01 - 2016-06-14 22:03 - 00207296 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2016-07-27 00:01 - 2016-06-14 22:03 - 00034240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-07-27 00:01 - 2016-06-14 22:03 - 00920000 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2016-06-01 20:16 - 2016-06-01 20:16 - 00065536 _____ () C:\Program Files\CCleaner\lang\lang-1050.dll
2016-08-09 09:05 - 2016-08-03 01:41 - 02366280 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\libglesv2.dll
2016-08-09 09:05 - 2016-08-03 01:40 - 00107848 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\libegl.dll
2016-07-27 00:01 - 2016-06-14 22:03 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1363038315-2344591806-1932542725-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\lisnik\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{5D8027F8-2EA0-4FD8-8656-37ACA836FDA6}C:\users\lisnik\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\lisnik\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{951F20B6-273E-40D9-9BE0-B8AC2B9D1AE0}C:\users\lisnik\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\lisnik\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{46BC6E66-A7E2-44DC-9AD3-1D8ADDF809E9}C:\users\lisnik\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\lisnik\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{8F99C77A-4068-42FB-AB94-D7989B421078}C:\users\lisnik\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\lisnik\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{FE1E6C22-3F54-4657-A030-94E6ECA2F54C}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{4F815279-DD07-4D04-AD03-CF8AF5E9AA15}C:\program files\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [UDP Query User{B1907AF6-86BF-4F1E-8239-815B7696650F}C:\program files\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [TCP Query User{895240BA-0CE8-4207-822F-1D2DF0602E38}C:\users\lisnik\appdata\local\temp\rar$exa0.813\whos.your.daddy\whosyourdaddy.exe] => (Block) C:\users\lisnik\appdata\local\temp\rar$exa0.813\whos.your.daddy\whosyourdaddy.exe
FirewallRules: [UDP Query User{77AD36D0-8AED-4C78-B28D-7EA4A42B08FF}C:\users\lisnik\appdata\local\temp\rar$exa0.813\whos.your.daddy\whosyourdaddy.exe] => (Block) C:\users\lisnik\appdata\local\temp\rar$exa0.813\whos.your.daddy\whosyourdaddy.exe
FirewallRules: [{4FBE5A67-D089-4C78-90A6-8132277CCD16}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{0267C6E3-7975-46FF-93B1-4307D4585023}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{0E5FEA94-DE62-4F00-B7C6-E586294FF3EE}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{AE0AEB8C-8991-49E1-949C-6B3A4B0ABFA7}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{41D0FDCD-E707-4194-9E4F-0B711C741F5E}C:\program files\java\jre1.8.0_101\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [UDP Query User{8C396B6A-4C63-402E-B6A3-654EAF5010FD}C:\program files\java\jre1.8.0_101\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [TCP Query User{D6296DBE-F6AC-4900-8C6D-128A70E1439F}C:\games\counter-strike global offensive\csgo.exe] => (Block) C:\games\counter-strike global offensive\csgo.exe
FirewallRules: [UDP Query User{BBF02626-C0CF-4134-B9AD-3F31C46FBBF7}C:\games\counter-strike global offensive\csgo.exe] => (Block) C:\games\counter-strike global offensive\csgo.exe
FirewallRules: [{604AA422-9EA2-47F8-B0AA-5E810D68E629}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{8E112437-DE74-401C-9556-6B8A38EB5816}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{014AEFDD-4DDB-4C24-8337-4C730CEE01B7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{B6A2FD60-8FC6-4E1F-ACE7-14C54BF14D43}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [TCP Query User{4F7EB6D8-8A1F-4710-AFC0-340815F4BA43}C:\users\lisnik\downloads\minecraft 1.8 by teamextrememc.com\huniecam.studio.v1.02\huniecamstudio.exe] => (Allow) C:\users\lisnik\downloads\minecraft 1.8 by teamextrememc.com\huniecam.studio.v1.02\huniecamstudio.exe
FirewallRules: [UDP Query User{7781BDA8-6B27-4D3B-BBC1-65931EDC6964}C:\users\lisnik\downloads\minecraft 1.8 by teamextrememc.com\huniecam.studio.v1.02\huniecamstudio.exe] => (Allow) C:\users\lisnik\downloads\minecraft 1.8 by teamextrememc.com\huniecam.studio.v1.02\huniecamstudio.exe
FirewallRules: [TCP Query User{112E97D1-FFC2-4A58-BD2D-3F7FA63211D4}C:\games\counter-strike\hl.exe] => (Allow) C:\games\counter-strike\hl.exe
FirewallRules: [UDP Query User{57C43385-FD97-4CD4-AADF-B0152BDF27CE}C:\games\counter-strike\hl.exe] => (Allow) C:\games\counter-strike\hl.exe
FirewallRules: [{91435C36-B36C-491C-9982-DB2676ECAC81}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{F2BD55F9-7721-4E47-B5DA-7B1DB1F2D223}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{6956CD61-3A66-4234-BF46-8DDBAB31934F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{8491880A-1AC9-4203-8B3D-3346D75C8B71}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{DEB3F373-DC96-4277-968A-BFD2DA59A782}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{B76C887B-A8C9-4AF2-A345-ACD1711D18E8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{FA4D77F4-ADE7-4DD1-AB28-BB680FCD5362}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{6169C594-486C-42EB-801D-EA822C1BB25C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe
FirewallRules: [{21F033C3-F681-4F56-8EAC-B69EC8663D5F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe
FirewallRules: [TCP Query User{94337EAA-652E-41EE-87A3-84FFAB4F6339}C:\games\counter-strike\hltv.exe] => (Allow) C:\games\counter-strike\hltv.exe
FirewallRules: [UDP Query User{F0829A4F-34D0-4E90-9E13-0D37D3565AF0}C:\games\counter-strike\hltv.exe] => (Allow) C:\games\counter-strike\hltv.exe
FirewallRules: [{21A860BD-F09D-4A53-88B3-7FBC7265B37D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{337D4F15-2CFB-4A7D-96AB-26E6AD2C8D9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{B2D1CC9C-1ABA-4E77-B366-756304819954}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe

==================== Restore Points =========================

09-08-2016 17:13:46 paint.net 4.0.10
29-08-2016 20:51:25 Installed DirectX
06-09-2016 15:36:28 Windows Update
11-09-2016 14:43:35 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/02/2016 04:48:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Aplikacija koja je prouzročila pogrešku: rads_user_kernel.exe, verzija: 0.0.0.0, vremenska oznaka: 0x4e65c1ac
Modul koji je prouzročio pogrešku: rads_user_kernel.exe, verzija: 0.0.0.0, vremenska oznaka: 0x4e65c1ac
Kôd iznimke: 0xc0000005
Pomak pogreške 0x000b8554
Id postupka: 0xab8
Vrijeme pokretanja aplikacije koja je prouzročila pogrešku: 0x01d205290a7183fe
Put aplikacije koja je prouzročila pogrešku: C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
Put modula koji je prouzročio pogrešku: C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
Id izvješća: 4949aa9a-711c-11e6-b628-00241dabd165

Error: (09/01/2016 01:26:06 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (09/01/2016 01:26:06 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (09/01/2016 12:18:22 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (09/01/2016 12:18:22 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (08/22/2016 01:58:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Aplikacija koja je prouzročila pogrešku: hl.exe, verzija: 1.1.1.1, vremenska oznaka: 0x48feaf5a
Modul koji je prouzročio pogrešku: unknown, verzija: 0.0.0.0, vremenska oznaka: 0x00000000
Kôd iznimke: 0xc0000005
Pomak pogreške 0x0c7a5597
Id postupka: 0x980
Vrijeme pokretanja aplikacije koja je prouzročila pogrešku: 0x01d1fc6c688ba83f
Put aplikacije koja je prouzročila pogrešku: C:\Games\Counter-Strike\hl.exe
Put modula koji je prouzročio pogrešku: unknown
Id izvješća: acdfc11b-685f-11e6-8124-00241dabd165

Error: (08/17/2016 07:08:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Aplikacija koja je prouzročila pogrešku: hl.exe, verzija: 1.1.1.1, vremenska oznaka: 0x48feaf5a
Modul koji je prouzročio pogrešku: hw.dll, verzija: 0.0.0.0, vremenska oznaka: 0x4a36d3cc
Kôd iznimke: 0xc0000027
Pomak pogreške 0x0012eac4
Id postupka: 0xea8
Vrijeme pokretanja aplikacije koja je prouzročila pogrešku: 0x01d1f8aa028ef5d2
Put aplikacije koja je prouzročila pogrešku: C:\Games\Counter-Strike\hl.exe
Put modula koji je prouzročio pogrešku: C:\Games\Counter-Strike\hw.dll
Id izvješća: 47d11845-649d-11e6-ae7b-00241dabd165

Error: (08/15/2016 08:11:51 AM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: The index cannot be initialized.

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (08/15/2016 08:11:51 AM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: The application cannot be initialized.

Context: Windows Application

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (08/15/2016 08:11:51 AM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: The gatherer object cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)


System errors:
=============
Error: (09/12/2016 05:48:19 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Nije uspjelo učitavanje sljedećih upravljačkih programa za pokretanje s odabirom pogonskog uređaja ili sistemsko pokretanje:
cdrom

Error: (09/12/2016 05:48:07 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 40. The internal error state is 252.

Error: (09/12/2016 05:47:58 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: Računalo je nakon provjere pogrešaka ponovno pokrenuto. Provjera pogrešaka bila je: 0x0000007a (0xfffff6fc40009aa0, 0xffffffffc000000e, 0x000000013d4ee860, 0xfffff88001354e50). Datoteka ispisa stanja spremljena je u: C:\Windows\MEMORY.DMP. Id izvješća: 091216-18439-01.

Error: (09/12/2016 05:47:57 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 17:45:40 on ‎12.‎9.‎2016 was unexpected.

Error: (09/12/2016 08:01:23 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Nije uspjelo učitavanje sljedećih upravljačkih programa za pokretanje s odabirom pogonskog uređaja ili sistemsko pokretanje:
cdrom

Error: (09/12/2016 08:01:11 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 40. The internal error state is 252.

Error: (09/12/2016 08:01:05 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 7:55:34 on ‎12.‎9.‎2016 was unexpected.

Error: (09/12/2016 07:46:46 AM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: Servis 'WMPNetworkSvc' nije ispravno pokrenut jer je CoCreateInstance(CLSID_UPnPDeviceFinder) naišao na pogrešku '0x80004005'. Provjerite je li pokrenut servis UPnPHost i je li komponenta UPnPHost sustava Windows ispravno instalirana.

Error: (09/12/2016 07:46:15 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Nije uspjelo učitavanje sljedećih upravljačkih programa za pokretanje s odabirom pogonskog uređaja ili sistemsko pokretanje:
cdrom

Error: (09/12/2016 07:45:50 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 40. The internal error state is 252.


CodeIntegrity:
===================================
Date: 2016-07-26 23:38:59.335
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-07-26 23:38:59.318
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-07-26 23:38:59.302
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-07-26 23:38:59.285
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-07-26 23:38:59.268
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-07-26 23:38:59.253
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-07-26 23:38:59.236
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-07-26 23:38:59.220
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-07-26 23:38:59.203
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-07-26 23:38:59.187
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Quad CPU Q9400 @ 2.66GHz
Percentage of memory in use: 71%
Total physical RAM: 5998.11 MB
Available physical RAM: 1702.84 MB
Total Virtual: 11994.41 MB
Available Virtual: 6890.01 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:195.21 GB) (Free:103.93 GB) NTFS
Drive d: () (Fixed) (Total:270.45 GB) (Free:270.31 GB) NTFS
Drive f: (Rezervirano za sustav) (Fixed) (Total:0.1 GB) (Free:0.08 GB) NTFS
Drive g: () (Fixed) (Total:117.09 GB) (Free:74.12 GB) NTFS
Drive h: (Nova jedinica) (Fixed) (Total:36.19 GB) (Free:36.12 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 153.4 GB) (Disk ID: E9E3E9E3)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=117.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=36.2 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 7D78DAD8)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=195.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=270.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10621
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Problem koji imaš nije uzrokovan malicioznim softverom i po mojoj slobodnoj procjeni problem je RAM, povišene temperature ili napajanje.

Otvori temu u Hardware dijelu fouma i tamo se obrati za pomoć.
http://www.mycity.rs/Hardware/


U međuvremenu,

Sledeća procedura će implementirati završno čišćenje.

Arrow Preuzmi "Xplode"-ov DelFix alat i snimi ga na Desktop.
Dvoklikom pokreni alat i štikliraj kućice ispred sledećih opcija;

Remove disinfection tools
Create registry backup
Purge System Restore


Klikni na dugme Run i pričekaj trenutak dok alat ne završi svoj rad.
Od ovog trenutka, svi korišćeni alati u ovoj temi bi trebali biti obrisani.
Alat će takođe formirati izveštaj za tebe. (C:\DelFix.txt)

Alat će snimiti i zdravo stanje registy-ja i napraviti backup koristeci integrisan program "ERUNT" u %windir%\ERUNT\DelFix
Alat briše stare system restore tačke i pravi novu, svežu tačku nakon čišćenja.

Ko je trenutno na forumu
 

Ukupno su 722 korisnika na forumu :: 24 registrovanih, 2 sakrivenih i 696 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: amstel, bankulen, bojank, branko7, Doca, dragonserbia, dule clio, Insan, Klecaviks, Krusarac, kuntalo, Leonardo, LUDI, mane123, Nebo_M, nemkea71, Ognjen D., pein, Rakenica, sabros, Srki98, USSVoyager, Vezista, zljubomir