MyCity » Ambulanta -> Arhiva Ambulante » Problem pri startovanju racunara

Problem pri startovanju racunara

Napisano na dan: 8.11.2013

Strana:
1
2

Problem pri startovanju racunara

Sledeća strana

Pagination

Odgovori

Strana:
1
2

MareBG2 Poslao: 08 Nov 2013 17:46 Idi na vrh
offline MareBG2 Građanin Pridružio: 19 Okt 2011 Poruke: 232	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Pre par meseci pojavio mi se problem pri startovanju racunara.Kada se racunaru podigne sistem i pojavi se destop potrebno mu je 3-4 minuta da se podizanje zavrsi i da racunar radi normalno.(racunar je star godinu dana i do par mesi radio je bez ovog problema)Takodje zvuku je potrebno jedno 5 minuta da se pojavi.Kada se zavrsi kompletno podizanje racunar radi normalno bez problema.Pokusao sam i da iskjucim programe koji se automacki pale na start up-u i nije pomoglo.Koristim Avast skenirao sam racunar nisam nasao nista. DDS (Ver_2012-11-20.01) - NTFS_x86 Internet Explorer: 10.0.9200.16720 BrowserJavaVersion: 10.21.2 Run by Mare at 17:28:29 on 2013-11-08 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.3062.1730 [GMT 1:00] . AV: avast! Internet Security Enabled/Updated {2B2D1395-420B-D5C9-657E-930FE358FC3C} SP: avast! Internet Security Enabled/Updated {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Windows Defender Enabled/Updated {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: avast! Internet Security Enabled {131692B0-0864-D491-4E21-3A3A1D8BBB47} . ============== Running Processes ================ . C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\atiesrxx.exe C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\Program Files\AVAST Software\Avast\afwServ.exe C:\Windows\system32\atieclxx.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files\Intel\iCLS Client\HeciServer.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Windows\system32\PnkBstrA.exe C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files\Razer\Razer Game Booster\RzKLService.exe C:\Users\Mare\AppData\Local\Akamai\netsession_win.exe C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe C:\Users\Mare\AppData\Local\Akamai\netsession_win.exe C:\Windows\system32\viakaraokesrv.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\system32\SearchIndexer.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe C:\Users\Mare\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Mare\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Mare\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Mare\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Mare\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Mare\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Mare\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Mare\AppData\Local\Google\Chrome\Application\chrome.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\conhost.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\System32\svchost.exe -k secsvcs . ============== Pseudo HJT Report =============== . uStart Page = [Link mogu videti samo ulogovani korisnici] uProxyOverride = <local> BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll TB: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll uRun: [Google Update] "c:\users\mare\appdata\local\google\update\GoogleUpdate.exe" /c uRun: [HydraVisionDesktopManager] "c:\program files\ati technologies\hydravision\HydraDM.exe" uRun: [Akamai NetSession Interface] "c:\users\mare\appdata\local\akamai\netsession_win.exe" mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe" dRunOnce: [SPReview] "c:\windows\system32\spreview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 uPolicies-Explorer: NoThumbnailCache = dword:1 uPolicies-Explorer: NoDriveTypeAutoRun = dword:145 mPolicies-System: ConsentPromptBehaviorAdmin = dword:5 mPolicies-System: ConsentPromptBehaviorUser = dword:3 mPolicies-System: EnableUIADesktopToggle = dword:0 IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000 IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} TCP: NameServer = 95.180.0.18 95.180.1.2 TCP: Interfaces\{6476C45D-4FC4-41A2-AF4B-2A485C597CBD} : DHCPNameServer = 95.180.0.18 95.180.1.2 Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll SSODL: WebCheck - <orphaned> SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll . ================= FIREFOX =================== . FF - ProfilePath - c:\users\mare\appdata\roaming\mozilla\firefox\profiles\n44dl70a.default\ FF - prefs.js: browser.startup.homepage - [Link mogu videti samo ulogovani korisnici] FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll FF - plugin: c:\program files\pando networks\media booster\npPandoWebPlugin.dll FF - plugin: c:\program files\webzen\browserextension\NPWZCmnCtrl.dll FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll FF - plugin: c:\programdata\nexon\ngm\npnxgame.dll FF - plugin: c:\programdata\nexoneu\ngm\npNxGameeu.dll FF - plugin: c:\users\mare\appdata\local\google\update\1.3.21.165\npGoogleUpdate3.dll FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_9_900_117.dll FF - ExtSQL: 2013-10-28 15:22; jid1-F9UJ2thwoAm5gQ@jetpack; c:\users\mare\appdata\roaming\mozilla\firefox\profiles\n44dl70a.default\extensions\jid1-F9UJ2thwoAm5gQ@jetpack.xpi . ---- FIREFOX POLICIES ---- FF - user.js: extensions.mixidj.tlbrSrchUrl - FF - user.js: extensions.mixidj.id - 7ce0be4a0000000000008c89a5554f68 FF - user.js: extensions.mixidj.appId - {A2773ED4-83BD-488A-A186-73590706C916} FF - user.js: extensions.mixidj.instlDay - 15941 FF - user.js: extensions.mixidj.vrsn - 1.8.18.8 FF - user.js: extensions.mixidj.vrsni - 1.8.18.8 FF - user.js: extensions.mixidj.vrsnTs - 1.8.18.816:20:37 FF - user.js: extensions.mixidj.prtnrId - mixidj FF - user.js: extensions.mixidj.prdct - mixidj FF - user.js: extensions.mixidj.aflt - babsst FF - user.js: extensions.mixidj.smplGrp - none FF - user.js: extensions.mixidj.tlbrId - baseyh FF - user.js: extensions.mixidj.instlRef - sst FF - user.js: extensions.mixidj.dfltLng - en FF - user.js: extensions.mixidj.excTlbr - false FF - user.js: extensions.mixidj.ffxUnstlRst - false FF - user.js: extensions.mixidj.admin - false FF - user.js: extensions.mixidj.autoRvrt - false FF - user.js: extensions.mixidj.rvrt - false FF - user.js: extensions.mixidj.newTab - false . ============= SERVICES / DRIVERS =============== . R0 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys [2012-7-31 21576] R0 aswNdis;avast! Firewall NDIS Filter Service;c:\windows\system32\drivers\aswNdis.sys [2013-8-27 12112] R0 aswNdis2;avast! Firewall Core Firewall Service;c:\windows\system32\drivers\aswNdis2.sys [2013-8-27 204784] R0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [2013-3-21 49376] R0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [2013-3-21 177864] R1 aswFW;avast! TDI Firewall driver;c:\windows\system32\drivers\aswFW.sys [2013-8-27 104752] R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2012-7-31 770344] R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2012-7-31 369584] R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2013-3-29 219136] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2012-7-31 29816] R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-7-31 66336] R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2013-9-23 46808] R2 avast! Firewall;avast! Firewall;c:\program files\avast software\avast\afwServ.exe [2013-9-23 137960] R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\intel\icls client\HeciServer.exe [2012-4-20 462048] R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2012-9-16 418376] R2 RzKLService;RzKLService;c:\program files\razer\razer game booster\RzKLService.exe [2013-9-17 106472] R2 Skype C2C Service;Skype C2C Service;c:\programdata\skype\toolbars\skype c2c service\c2c_service.exe [2013-10-9 3275136] R2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files\intel\intel(r) management engine components\uns\UNS.exe [2012-6-2 364416] R2 VIAKaraokeService;VIA Karaoke digital mixer Service;c:\windows\system32\ViakaraokeSrv.exe [2012-6-2 27760] R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2013-2-14 79872] R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\L1C62x86.sys [2012-6-2 68720] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-7-28 22856] R3 MEI;Intel(R) Management Engine Interface ;c:\windows\system32\drivers\HECI.sys [2013-4-21 55104] R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2012-6-2 1143920] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2012-7-8 104912] S2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2012-7-28 701512] S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2013-6-21 162408] S3 andnetadb;ADB Interface DriverNet;c:\windows\system32\drivers\lgandnetadb.sys [2013-4-11 25856] S3 AndNetDiag;LGE AndroidNet USB Serial Port;c:\windows\system32\drivers\lgandnetdiag.sys [2013-4-11 23040] S3 ANDNetModem;LGE AndroidNet USB Modem;c:\windows\system32\drivers\lgandnetmodem.sys [2013-4-11 27776] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\drivers\ssudbus.sys [2012-9-7 83168] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-6-23 15872] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\drivers\ssudmdm.sys [2012-9-7 181344] S3 ssudserd;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.);c:\windows\system32\drivers\ssudserd.sys [2012-9-7 181344] S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2013-4-30 52224] . =============== Created Last 30 ================ . 2013-11-08 12:10:45 7796464 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{2c3a25d6-839d-488a-861f-11b8eb6337a3}\mpengine.dll 2013-10-28 15:20:15 -------- d-----w- c:\users\mare\appdata\local\Akamai 2013-10-14 14:23:00 273304 ----a-w- c:\program files\mozilla firefox\updater.exe 2013-10-14 14:23:00 21527448 ----a-w- c:\program files\mozilla firefox\xul.dll 2013-10-14 14:23:00 170232 ----a-w- c:\program files\mozilla firefox\webapp-uninstaller.exe 2013-10-14 14:23:00 107416 ----a-w- c:\program files\mozilla firefox\webapprt-stub.exe . ==================== Find3M ==================== . 2013-11-08 15:10:36 140360 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys 2013-11-08 15:10:28 283032 ----a-w- c:\windows\system32\PnkBstrB.xtr 2013-11-08 15:10:28 283032 ----a-w- c:\windows\system32\PnkBstrB.exe 2013-11-07 22:24:40 283032 ----a-w- c:\windows\system32\PnkBstrB.ex0 2013-10-08 21:40:24 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2013-10-08 21:40:24 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2013-09-28 15:03:20 235 ----a-w- c:\windows\system32\nxEuUninstall.bat 2013-09-28 15:03:18 446464 ----a-w- c:\windows\NEXON_EU_DownloaderUpdater.exe 2013-09-22 23:28:06 1767936 ----a-w- c:\windows\system32\wininet.dll 2013-09-22 23:27:49 2876928 ----a-w- c:\windows\system32\jscript9.dll 2013-09-22 23:27:48 61440 ----a-w- c:\windows\system32\iesetup.dll 2013-09-22 23:27:48 109056 ----a-w- c:\windows\system32\iesysprep.dll 2013-09-21 03:30:24 2706432 ----a-w- c:\windows\system32\mshtml.tlb 2013-09-21 02:39:47 71680 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe 2013-09-04 01:15:32 258560 ----a-w- c:\windows\system32\drivers\usbhub.sys 2013-09-04 01:14:52 76288 ----a-w- c:\windows\system32\drivers\usbccgp.sys 2013-09-04 01:14:52 284672 ----a-w- c:\windows\system32\drivers\usbport.sys 2013-09-04 01:14:45 43008 ----a-w- c:\windows\system32\drivers\usbehci.sys 2013-09-04 01:14:45 20480 ----a-w- c:\windows\system32\drivers\usbohci.sys 2013-09-04 01:14:43 24064 ----a-w- c:\windows\system32\drivers\usbuhci.sys 2013-09-04 01:14:40 6016 ----a-w- c:\windows\system32\drivers\usbd.sys 2013-09-03 12:35:12 238872 ------w- c:\windows\system32\MpSigStub.exe 2013-08-30 07:48:13 177864 ----a-w- c:\windows\system32\drivers\aswVmm.sys 2013-08-30 07:48:12 770344 ----a-w- c:\windows\system32\drivers\aswSnx.sys 2013-08-30 07:48:12 61680 ----a-w- c:\windows\system32\drivers\aswRdr2.sys 2013-08-30 07:48:12 49376 ----a-w- c:\windows\system32\drivers\aswRvrt.sys 2013-08-30 07:48:12 204784 ----a-w- c:\windows\system32\drivers\aswNdis2.sys 2013-08-30 07:48:11 66336 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys 2013-08-30 07:48:11 21576 ----a-w- c:\windows\system32\drivers\aswKbd.sys 2013-08-30 07:48:11 104752 ----a-w- c:\windows\system32\drivers\aswFW.sys 2013-08-30 07:47:40 41664 ----a-w- c:\windows\avastSS.scr 2013-08-29 01:12:06 28160 ----a-w- c:\windows\system32\drivers\usbser.sys 2013-08-28 01:04:30 2348544 ----a-w- c:\windows\system32\win32k.sys . ============= FINISH: 17:29:22.08 =============== [Link mogu videti samo ulogovani korisnici]

Profil

magna86 Poslao: 08 Nov 2013 17:54 Idi na vrh
offline magna86 Anti Malware Fighter Rank 2 Pridružio: 21 Jun 2008 Poruke: 6104	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozdrav, Ni postavljeni DDS logovi ne ukazuju na prisustvo aktivnog malware-a. Bez obzira na to, idemo da dodatne provere. Preuzmi Junkware Removal Tool ( JRT ) i sacuvaj ga na desktop. zatvori browser i ostale pokrenute programe; Jel potrebno navesti napomenu za duzinu scana? Da postavim ovaj PG ili nema potrebe za tim? Privremeno deaktiviraj zastitni softver (Uputstvo); dvoklikom na ikonicu ( )pokreni program JRT; Kod obavestenja "press any key" pritisnuti bilo koji taster i alat ce zapoceti skeniranje. Napomena: u ovisnosti od sistemske specifikacije vreme skeniranja u nekim slucajevima moze da potraje. Kada zavrsi otvorice se log sa izvestajem koji ce biti sacuvan na desktopu pod nazivom JRT.txt Kopiraj sadrzaj tog loga u temu. Potom ... Preuzmi sUBs-ov ComboFix sa sledeće adrese na Desktop: Bleeping Computer Klikni desnim tasterom na link i odaberi opciju Save Target As... (Save Link As..., Save Linked Content As... ili sličnu); Kada se otvori dijalog za izbor lokacije na kojoj treba sačuvati file, odaberi Desktop i klikni Save. Kada preuzimanje programa bude završeno: deaktiviraj zaštitni softver (uputstvo); zatvori pokrenute programe; dvoklikom pokreni program ComboFix; u prozoru koji se otvori klikni "I Agree". U toku rada, ComboFix će:proveriti postoji li novija verzija programa: klikni Yes ako bude ponuđeno preuzimanje iste.ako Recovery Console nije instalirana, ponuditi instalaciju: obavezno prihvati klikom na Yes i isprati postupak.postaviti/dati određeni broj upita/obaveštenja: prihvati klikom na Yes ili OK.po potrebi, restartovati Windows (više puta); na kraju rada, otvoriti Notepad sa izveštajem o skeniranju. Iskopiraj izveštaj koji je ComboFix napravio u temu na forumu: klikni desnim tasterom miša u prozor Notepad-a i izaberi Select All; klikni desnim tasterom miša na obeleženi tekst i izaberi Copy; klikni desnim tasterom miša u polje za pisanje poruke i izaberi Paste. Napomena:Izveštaj će biti sačuvan pod nazivom ComboFix.txt na sistemskoj particiji (tipična lokacija: C:\ComboFix.txt); Ukoliko nakon slanja poruke primetiš da izveštaj nije kompletan, iskoristi opciju Prikači fajl za prilaganje file-a C:\ComboFix.txt uz poruku; Nemoj kliktati u okviru ComboFix prozora dok radi jer to može usporiti rad alata; Nemoj ponovo pokretati ComboFix na svoju ruku - javi se u temi bilo kakav problem da imaš tokom prvog pokretanja alata; Ako nakon restarta dobijaš grešku prilikom startovanja pojedinih programa da su označeni za brisanje (Illegal operation attempted on a registry key that has been marked for deletion), onda ponovo restartuj sistem i to ce rešiti problem.

Profil

MareBG2 Poslao: 08 Nov 2013 18:41 Idi na vrh
offline MareBG2 Građanin Pridružio: 19 Okt 2011 Poruke: 232	1Ovo se svidja korisniku: Cufo Registruj se da bi pohvalio/la poruku! log za JRT: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.0.8 (11.05.2013:1) OS: Windows 7 Ultimate x86 Ran by Mare on Fri 11/08/2013 at 18:12:53.94 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\defaulttabbho.defaulttabbrowser Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\defaulttabbho.defaulttabbrowser.1 Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C} Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\fixcleaner Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\softonic Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\defaulttab Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\fixcleaner Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\iminent Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\prod.cap Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\au__rasapi32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\au__rasmancs Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_for_combat-arms_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_for_combat-arms_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_for_smartpcfixer_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_for_smartpcfixer_RASMANCS Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{FE321D61-87D7-4D83-89B8-5491D349E1FF} ~~~ Files Successfully deleted: [File] C:\Windows\System32\Tasks\epupdater ~~~ Folders Successfully deleted: [Folder] "C:\ProgramData\babylon" Successfully deleted: [Folder] "C:\Users\Mare\AppData\Roaming\defaulttab" Successfully deleted: [Folder] "C:\Users\Mare\AppData\Roaming\fixcleaner" Successfully deleted: [Folder] "C:\Users\Mare\appdata\locallow\mixidj" Successfully deleted: [Folder] "C:\Program Files\fixcleaner" Successfully deleted: [Folder] "C:\Program Files\mypc backup" ~~~ FireFox Successfully deleted: [File] C:\Users\Mare\AppData\Roaming\mozilla\firefox\profiles\n44dl70a.default\user.js Successfully deleted: [File] C:\Users\Mare\AppData\Roaming\mozilla\firefox\profiles\n44dl70a.default\extensions\firefox@luckyleap.net.xpi Successfully deleted: [File] C:\Users\Mare\AppData\Roaming\mozilla\firefox\profiles\n44dl70a.default\searchplugins\babylon.xml Successfully deleted: [File] C:\Users\Mare\AppData\Roaming\mozilla\firefox\profiles\n44dl70a.default\searchplugins\search-here.xml Emptied folder: C:\Users\Mare\AppData\Roaming\mozilla\firefox\profiles\n44dl70a.default\minidumps [32 files] ~~~ Chrome Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\pmlghpafmmnmmkjdhacccolfgnkiboco ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on Fri 11/08/2013 at 18:14:44.28 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Postoji problem kod ComboFix-a uradio sam sve kao sto si napiso i u toku skeniranja pojavio mi se ovaj problem. Tekst iz prozora : Problem signature: Problem Event Name: BEX Application Name: mtee.3XE Application Version: 2.0.0.0 Application Timestamp: 3f4d232a Fault Module Name: mtee.3XE Fault Module Version: 2.0.0.0 Fault Module Timestamp: 3f4d232a Exception Offset: 00002833 Exception Code: c0000005 Exception Data: 00000008 OS Version: 6.1.7601.2.1.0.256.1 Locale ID: 1033 Additional Information 1: 0a9e Additional Information 2: 0a9e372d3b4ad19135b953a78882e789 Additional Information 3: 0a9e Additional Information 4: 0a9e372d3b4ad19135b953a78882e789 Read our privacy statement online: [Link mogu videti samo ulogovani korisnici] If the online privacy statement is not available, please read our privacy statement offline: C:\Windows\system32\en-US\erofflps.txt

Profil

magna86 Poslao: 08 Nov 2013 18:59 Idi na vrh
offline magna86 Anti Malware Fighter Rank 2 Pridružio: 21 Jun 2008 Poruke: 6104	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Tu gresku nije prouzrokovao ComboFix. Hajde da probamo jos jednom. 1. Obrisi rucno ikonicu od ComboFix-a i preuzmi svezu instalaciju alata sa ovog linka: ComboFix download link 2. Privremeno deaktiviraj zastitni softver, uputstvo. 3. Zatvori sve aktivne programe i dvoklikom pokreni ComboFix i klikni na dugme I Agree. ukoliko ComboFix zatrazi azuriranje na noviju verziju, dozvoli mu 4. Kada alat zavrsi, napravice izvestaj, tipicna lokacija loga: C:\ComboFix.txt. Iskopiraj sadrzaj tog loga u temu.

Profil

MareBG2 Poslao: 08 Nov 2013 19:18 Idi na vrh
offline MareBG2 Građanin Pridružio: 19 Okt 2011 Poruke: 232	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! magna86 ::Tu gresku nije prouzrokovao ComboFix. Hajde da probamo jos jednom. 1. Obrisi rucno ikonicu od ComboFix-a i preuzmi svezu instalaciju alata sa ovog linka: ComboFix download link 2. Privremeno deaktiviraj zastitni softver, uputstvo. 3. Zatvori sve aktivne programe i dvoklikom pokreni ComboFix i klikni na dugme I Agree. ukoliko ComboFix zatrazi azuriranje na noviju verziju, dozvoli mu 4. Kada alat zavrsi, napravice izvestaj, tipicna lokacija loga: C:\ComboFix.txt. Iskopiraj sadrzaj tog loga u temu. Opet isti problem

Profil

magna86 Poslao: 08 Nov 2013 19:24 Idi na vrh
offline magna86 Anti Malware Fighter Rank 2 Pridružio: 21 Jun 2008 Poruke: 6104	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Dobro, idemo ovako. Preuzmi Farbar-ov Farbar Recovery Scan Tool () sa ove adrese na Desktop: Postoji 32bit. i 64bit.-na verzija. Potrebno je preuzeti verziju koja je kompatibilna sa tvojim sistemom. Ako nisi siguran koja verzija se odnosi na tvoj sistem, preuzmi ih obe i pokreni. Samo jedan od njih će raditi na tvom sistemu, to će biti prava verzija. dvoklikom pokreni program, kada se alat pokrene klikni Yes na disclaimer prozor; klikni na dugme Scan; po završetku skeniranja, alat će formirati izveštaj (FRST.txt) u isti direktorijum gde je FRST alat sačuvan; iskopiraj sadržaj FRST.txt izveštaja u poruku; po prvom pokretanju, alat bi trebao formirati i dodatni izveštaj (Addition.txt); okači Addition.txt izveštaj uz poruku koristeći opciju Prikači fajl Potom ... Preuzmi GMER, AntiRootKit alat sa donjeg linka na Desktop: GMER download Kliknite dati link; Kada se otvori dijalog za izbor lokacije na kojoj treba sačuvati file, odaberite Desktop i kliknite Save. Dvoklikom pokrenite GMER. Sačekajte da se završi uvodno skeniranje - ukoliko se pojavi bilo kakav upit, kliknite No; kliknite Scan i sačekajte da skeniranje bude završeno; kliknite Save ... - izveštaj sačuvajte na Desktop (pod nazivom ARK): Priloži ARK izveštaj uz poruku korišćenjem opcije Prikači fajl.

Profil

MareBG2 Poslao: 08 Nov 2013 19:56 Idi na vrh
offline MareBG2 Građanin Pridružio: 19 Okt 2011 Poruke: 232	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Farbar Recovery Scan Tool: Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 31-10-2013 Ran by Mare (administrator) on MARE-PC on 08-11-2013 19:31:44 Running from C:\Users\Mare\Downloads Microsoft Windows 7 Ultimate Service Pack 1 (X86) OS Language: English(US) Internet Explorer Version 10 Boot Mode: Normal ==================== Processes (Whitelisted) =================== (AMD) C:\Windows\system32\atiesrxx.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe (AMD) C:\Windows\system32\atieclxx.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe () C:\Windows\system32\PnkBstrA.exe (Razer Inc.) C:\Program Files\Razer\Razer Game Booster\RzKLService.exe (Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (AMD) C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe (VIA Technologies, Inc.) C:\Windows\system32\viakaraokesrv.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [4858968 2013-08-30] (AVAST Software) HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-03-28] (Advanced Micro Devices, Inc.) HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated) HKCU\...\Run: [Google Update] - C:\Users\Mare\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-06-02] (Google Inc.) HKCU\...\Run: [HydraVisionDesktopManager] - C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe [393216 2011-04-19] (AMD) HKCU\...\Run: [Akamai NetSession Interface] - C:\Users\Mare\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.) HKCU\...\Policies\Explorer: [NoThumbnailCache] 1 MountPoints2: F - F:\setup.exe MountPoints2: {fa565333-9943-11e2-b005-8c89a5554f68} - G:\LGAutoRun.exe ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = [Link mogu videti samo ulogovani korisnici] HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x40C56066B1A3CD01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL [2210608 2006-10-26] (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 95.180.0.18 95.180.1.2 FireFox: ======== FF ProfilePath: C:\Users\Mare\AppData\Roaming\Mozilla\Firefox\Profiles\n44dl70a.default FF Homepage: [Link mogu videti samo ulogovani korisnici] FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll () FF Plugin: @java.com/JavaPlugin,version=10.21.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin: @nexon.com/NxGame - C:\ProgramData\Nexon\NGM\npnxgame.dll (Nexon) FF Plugin: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon) FF Plugin: @pandonetworks.com/PandoWebPlugin - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF Plugin: @Webzen.com/NPBrowserExt - C:\Program Files\WEBZEN\BrowserExtension\NPWZCmnCtrl.dll (WEBZEN) FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @onlive.com/OnLiveGameClientDetector,version=1.0.0 - C:\Program Files\OnLive\Plugin\npolgdet.dll No File FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Mare\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Mare\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF SearchPlugin: C:\Users\Mare\AppData\Roaming\Mozilla\Firefox\Profiles\n44dl70a.default\searchplugins\mixidj.xml FF Extension: DownloadHelper - C:\Users\Mare\AppData\Roaming\Mozilla\Firefox\Profiles\n44dl70a.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} FF Extension: jid1-F9UJ2thwoAm5gQ - C:\Users\Mare\AppData\Roaming\Mozilla\Firefox\Profiles\n44dl70a.default\Extensions\jid1-F9UJ2thwoAm5gQ@jetpack.xpi FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF Chrome: ======= CHR HomePage: [Link mogu videti samo ulogovani korisnici] CHR RestoreOnStartup: "hxxp://www.google.com/" CHR Plugin: (Shockwave Flash) - C:\Users\Mare\AppData\Local\Google\Chrome\Application\21.0.1180.89\PepperFlash\pepflashplayer.dll No File CHR Plugin: (Shockwave Flash) - C:\Users\Mare\AppData\Local\Google\Chrome\Application\30.0.1599.101\gcswf32.dll No File CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_4_402_265.dll No File CHR Plugin: (Remoting Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Users\Mare\AppData\Local\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll () CHR Plugin: (Chrome PDF Viewer) - C:\Users\Mare\AppData\Local\Google\Chrome\Application\30.0.1599.101\pdf.dll () CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.) CHR Plugin: (Java(TM) Platform SE 7 U5) - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation) CHR Plugin: (Java Deployment Toolkit 7.0.50.255) - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) CHR Plugin: (Pando Web Plugin) - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) CHR Plugin: (Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) CHR Plugin: (Nexon Game Controller) - C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon) CHR Plugin: (Google Update) - C:\Users\Mare\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File CHR Extension: (Media Hint) - C:\Users\Mare\AppData\Local\Google\Chrome\User Data\Default\Extensions\anepbdekljkmmimmhbniglnnanmmkoja\0.1.13_0 CHR Extension: (YouTube) - C:\Users\Mare\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 CHR Extension: (Google Search) - C:\Users\Mare\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 CHR Extension: (Video Downloader) - C:\Users\Mare\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.4.5_0 CHR Extension: (Google Wallet) - C:\Users\Mare\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0 CHR Extension: (Gmail) - C:\Users\Mare\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1 CHR HKLM\...\Chrome\Extension: [eiimolhnbbbdagljikeckdkldgemmmlj] - C:\Program Files\lucky leap\eiimolhnbbbdagljikeckdkldgemmmlj.crx CHR StartMenuInternet: Google Chrome - C:\Users\Mare\AppData\Local\Google\Chrome\Application\chrome.exe ========================== Services (Whitelisted) ================= R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-08-30] (AVAST Software) R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [137960 2013-08-30] (AVAST Software) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [462048 2012-04-20] (Intel(R) Corporation) R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation) S2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation) R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2013-04-15] () R2 RzKLService; C:\Program Files\Razer\Razer Game Booster\RzKLService.exe [106472 2013-09-16] (Razer Inc.) S2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3275136 2013-10-09] (Skype Technologies S.A.) R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-03-29] (VIA Technologies, Inc.) ==================== Drivers (Whitelisted) ==================== S3 andnetadb; C:\Windows\System32\Drivers\lgandnetadb.sys [25856 2012-07-03] (Google Inc) S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag.sys [23040 2012-07-03] (LG Electronics Inc.) S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem.sys [27776 2012-07-03] (LG Electronics Inc.) R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [29816 2013-08-30] (AVAST Software) R1 aswFW; C:\Windows\System32\Drivers\aswFW.sys [104752 2013-08-30] (AVAST Software) R0 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [21576 2013-08-30] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [66336 2013-08-30] (AVAST Software) R0 aswNdis; C:\Windows\System32\DRIVERS\aswNdis.sys [12112 2013-03-13] (ALWIL Software) R0 aswNdis2; C:\Windows\System32\Drivers\aswNdis2.sys [204784 2013-08-30] (AVAST Software) R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [61680 2013-08-30] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [49376 2013-08-30] () R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [770344 2013-08-30] (AVAST Software) R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [369584 2013-08-30] (AVAST Software) R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [56080 2013-08-30] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [177864 2013-08-30] () R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation) R3 MEI; C:\Windows\System32\DRIVERS\HECI.sys [55104 2000-01-01] (Intel Corporation) S3 netrcacm; C:\Windows\System32\DRIVERS\netrcacm.sys [20648 2003-04-03] (Thomson Inc.) R1 SCDEmu; C:\Windows\System32\Drivers\SCDEmu.sys [113104 2012-07-19] (Power Software Ltd) S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [181344 2012-07-31] (DEVGURU Co., LTD.(www.devguru.co.kr)) S3 usbbus; C:\Windows\System32\DRIVERS\lgusbbus.sys [13056 2012-03-02] (LG Electronics Inc.) S3 UsbDiag; C:\Windows\System32\DRIVERS\lgusbdiag.sys [20864 2012-03-02] (LG Electronics Inc.) S3 USBModem; C:\Windows\System32\DRIVERS\lgusbmodem.sys [25216 2012-03-02] (LG Electronics Inc.) R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [1143920 2010-08-04] (VIA Technologies, Inc.) S3 andnetndis; No ImagePath S3 EagleXNt; No ImagePath S3 Synth3dVsc; No ImagePath S3 tsusbhub; No ImagePath S3 VGPU; No ImagePath S3 WinRing0_1_2_0; \??\C:\Program Files\Razer\Razer Game Booster\Driver\WinRing0.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-11-08 19:31 - 2013-11-08 19:31 - 00000000 ____D C:\FRST 2013-11-08 19:30 - 2013-11-08 19:30 - 01089445 _____ (Farbar) C:\Users\Mare\Downloads\FRST.exe 2013-11-08 19:15 - 2013-11-08 19:16 - 00000000 ___SD C:\ComboFix 2013-11-08 18:31 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe 2013-11-08 18:31 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe 2013-11-08 18:31 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe 2013-11-08 18:31 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe 2013-11-08 18:31 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe 2013-11-08 18:31 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe 2013-11-08 18:31 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe 2013-11-08 18:31 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe 2013-11-08 18:18 - 2013-11-08 18:31 - 00000000 ____D C:\Qoobox 2013-11-08 18:18 - 2013-11-08 18:18 - 00000000 ____D C:\Windows\erdnt 2013-11-08 18:12 - 2013-11-08 18:12 - 00000000 ____D C:\Windows\ERUNT 2013-10-31 16:10 - 2013-10-31 16:10 - 00000420 _____ C:\Windows\PFRO.log 2013-10-28 17:00 - 2013-10-29 16:08 - 00000003 _____ C:\Users\Mare\Documents\NGM.log 2013-10-28 16:25 - 2013-10-28 16:59 - 1818375748 _____ (Nexon) C:\Users\Mare\Documents\Combatarms_eu.exe 2013-10-28 16:20 - 2013-10-28 16:22 - 00000000 ____D C:\Users\Mare\AppData\Local\Akamai 2013-10-27 16:54 - 2013-10-27 16:54 - 02200316 _____ C:\Users\Mare\Downloads\skr 2.wma 2013-10-27 16:53 - 2013-10-27 16:53 - 02191816 _____ C:\Users\Mare\Downloads\skr 1.m4a 2013-10-21 15:44 - 2013-11-08 18:25 - 00001512 _____ C:\Windows\setupact.log 2013-10-21 15:44 - 2013-10-21 15:44 - 00000000 _____ C:\Windows\setuperr.log 2013-10-15 15:12 - 2013-10-15 15:33 - 989208302 _____ C:\Users\Mare\Downloads\Dance with me.divx 2013-10-14 15:22 - 2013-10-14 15:23 - 00000000 ____D C:\Program Files\Mozilla Firefox 2013-10-09 19:00 - 2013-09-23 00:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-10-09 19:00 - 2013-09-23 00:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-10-09 19:00 - 2013-09-23 00:28 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-10-09 19:00 - 2013-09-23 00:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-10-09 19:00 - 2013-09-23 00:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-10-09 19:00 - 2013-09-23 00:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-10-09 19:00 - 2013-09-23 00:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-10-09 19:00 - 2013-09-23 00:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-10-09 19:00 - 2013-09-23 00:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-10-09 19:00 - 2013-09-23 00:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-10-09 19:00 - 2013-09-23 00:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-10-09 19:00 - 2013-09-23 00:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-10-09 19:00 - 2013-09-23 00:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-10-09 19:00 - 2013-09-23 00:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-10-09 19:00 - 2013-09-21 04:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-10-09 19:00 - 2013-09-21 03:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-10-09 14:24 - 2013-09-04 02:15 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2013-10-09 14:24 - 2013-09-04 02:14 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2013-10-09 14:24 - 2013-09-04 02:14 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys 2013-10-09 14:24 - 2013-09-04 02:14 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2013-10-09 14:24 - 2013-09-04 02:14 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys 2013-10-09 14:24 - 2013-09-04 02:14 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys 2013-10-09 14:24 - 2013-09-04 02:14 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys 2013-10-09 14:24 - 2013-08-29 02:12 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbser.sys 2013-10-09 14:24 - 2013-08-28 02:04 - 02348544 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2013-10-09 14:24 - 2013-08-01 12:03 - 00729024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2013-10-09 14:24 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2013-10-09 14:24 - 2013-07-12 11:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys 2013-10-09 14:24 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll 2013-10-09 14:24 - 2013-07-03 04:36 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys 2013-10-09 14:24 - 2013-07-03 04:36 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys 2013-10-09 14:24 - 2013-06-25 23:56 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys 2013-10-09 14:24 - 2013-06-06 05:52 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll 2013-10-09 14:24 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2013-10-09 14:24 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll 2013-10-09 14:24 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2013-10-09 14:24 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll ==================== One Month Modified Files and Folders ======= 2013-11-08 19:31 - 2013-11-08 19:31 - 00000000 ____D C:\FRST 2013-11-08 19:30 - 2013-11-08 19:30 - 01089445 _____ (Farbar) C:\Users\Mare\Downloads\FRST.exe 2013-11-08 19:17 - 2012-06-02 16:17 - 01986431 _____ C:\Windows\WindowsUpdate.log 2013-11-08 19:16 - 2013-11-08 19:15 - 00000000 ___SD C:\ComboFix 2013-11-08 19:16 - 2012-06-03 12:07 - 00000000 ____D C:\Users\Mare\AppData\Local\CrashDumps 2013-11-08 18:45 - 2012-06-02 18:01 - 00000904 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3611775665-711953469-3938270170-1000UA.job 2013-11-08 18:40 - 2012-06-02 17:56 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-11-08 18:31 - 2013-11-08 18:18 - 00000000 ____D C:\Qoobox 2013-11-08 18:31 - 2009-07-14 05:34 - 00016624 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-11-08 18:31 - 2009-07-14 05:34 - 00016624 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-11-08 18:30 - 2009-11-11 06:43 - 00782470 _____ C:\Windows\system32\PerfStringBackup.INI 2013-11-08 18:25 - 2013-10-21 15:44 - 00001512 _____ C:\Windows\setupact.log 2013-11-08 18:25 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-11-08 18:18 - 2013-11-08 18:18 - 00000000 ____D C:\Windows\erdnt 2013-11-08 18:12 - 2013-11-08 18:12 - 00000000 ____D C:\Windows\ERUNT 2013-11-08 16:45 - 2012-06-02 18:01 - 00000852 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3611775665-711953469-3938270170-1000Core.job 2013-11-08 16:10 - 2012-06-17 22:25 - 00283032 _____ C:\Windows\system32\PnkBstrB.xtr 2013-11-08 16:10 - 2012-06-17 18:39 - 00283032 _____ C:\Windows\system32\PnkBstrB.exe 2013-11-08 16:10 - 2012-06-17 18:39 - 00140360 _____ C:\Windows\system32\Drivers\PnkBstrK.sys 2013-11-07 23:24 - 2012-06-17 18:39 - 00283032 _____ C:\Windows\system32\PnkBstrB.ex0 2013-11-05 23:52 - 2012-09-22 19:50 - 00000000 ____D C:\Program Files\Steam 2013-11-05 17:13 - 2012-09-22 19:50 - 00000000 ____D C:\Program Files\Common Files\Steam 2013-11-04 21:42 - 2012-06-02 22:33 - 00000000 ____D C:\Users\Mare\AppData\Roaming\vlc 2013-10-31 16:10 - 2013-10-31 16:10 - 00000420 _____ C:\Windows\PFRO.log 2013-10-29 16:08 - 2013-10-28 17:00 - 00000003 _____ C:\Users\Mare\Documents\NGM.log 2013-10-28 16:59 - 2013-10-28 16:25 - 1818375748 _____ (Nexon) C:\Users\Mare\Documents\Combatarms_eu.exe 2013-10-28 16:22 - 2013-10-28 16:20 - 00000000 ____D C:\Users\Mare\AppData\Local\Akamai 2013-10-27 22:14 - 2012-06-03 15:24 - 00000000 ____D C:\Users\Mare\AppData\Roaming\uTorrent 2013-10-27 16:54 - 2013-10-27 16:54 - 02200316 _____ C:\Users\Mare\Downloads\skr 2.wma 2013-10-27 16:53 - 2013-10-27 16:53 - 02191816 _____ C:\Users\Mare\Downloads\skr 1.m4a 2013-10-27 16:40 - 2012-06-22 17:56 - 00000000 ____D C:\Users\Mare\AppData\Local\Windows Live 2013-10-21 15:44 - 2013-10-21 15:44 - 00000000 _____ C:\Windows\setuperr.log 2013-10-20 20:39 - 2009-10-14 11:50 - 00000000 ____D C:\Windows\Panther 2013-10-17 15:00 - 2012-10-05 20:21 - 00000000 ____D C:\Program Files\Common Files\Adobe AIR 2013-10-17 14:48 - 2012-06-22 19:29 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service 2013-10-16 14:49 - 2012-06-02 18:09 - 00002321 _____ C:\Users\Mare\Desktop\Google Chrome.lnk 2013-10-16 14:26 - 2012-06-22 19:29 - 00000000 ____D C:\Users\Mare\AppData\Local\Mozilla 2013-10-15 15:33 - 2013-10-15 15:12 - 989208302 _____ C:\Users\Mare\Downloads\Dance with me.divx 2013-10-14 15:23 - 2013-10-14 15:22 - 00000000 ____D C:\Program Files\Mozilla Firefox 2013-10-14 14:16 - 2012-07-10 19:01 - 00000000 ___RD C:\Program Files\Skype 2013-10-14 14:16 - 2012-07-10 19:01 - 00000000 ____D C:\ProgramData\Skype 2013-10-10 15:47 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Microsoft.NET 2013-10-09 22:33 - 2009-07-14 05:33 - 00412432 _____ C:\Windows\system32\FNTCACHE.DAT 2013-10-09 19:02 - 2013-07-16 01:27 - 00000000 ____D C:\Windows\system32\MRT 2013-10-09 19:00 - 2009-10-14 10:57 - 78106760 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2013-10-09 18:59 - 2012-06-02 17:14 - 00000000 ____D C:\ProgramData\Microsoft Help Some content of TEMP: ==================== C:\Users\Mare\AppData\Local\Temp\NGMDll.dll C:\Users\Mare\AppData\Local\Temp\NGMResource.dll C:\Users\Mare\AppData\Local\Temp\NGMSetup.exe C:\Users\Mare\AppData\Local\Temp\unicows.dll ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe => MD5 is legit C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-11-01 16:58 ==================== End Of Log ============================ [Link mogu videti samo ulogovani korisnici] AntiRootKit: [Link mogu videti samo ulogovani korisnici]

Profil

magna86 Poslao: 08 Nov 2013 20:15 Idi na vrh
offline magna86 Anti Malware Fighter Rank 2 Pridružio: 21 Jun 2008 Poruke: 6104	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! 1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod: Start Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File FF SearchPlugin: C:\Users\Mare\AppData\Roaming\Mozilla\Firefox\Profiles\n44dl70a.default\searchplugins\mixidj.xml C:\Users\Mare\AppData\Roaming\Mozilla\Firefox\Profiles\n44dl70a.default\searchplugins\mixidj.xml CHR HKLM\...\Chrome\Extension: [eiimolhnbbbdagljikeckdkldgemmmlj] - C:\Program Files\lucky leap\eiimolhnbbbdagljikeckdkldgemmmlj.crx C:\Program Files\lucky leap Task: {082F677E-535E-4517-BB60-D8E2EEC3BCC1} - \EPUpdater No Task File C:\Users\Mare\AppData\Local\Temp CMD: ipconfig /flushdns End 2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi. 3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj. Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema. Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku. Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a. -------- Potom -------- Preuzmi TFC (Temp File Cleaner) i sacuvaj ga na Desktop. Dvoklikom pokreni program i klikni na dugme Start da bi dozvolio programu da otpocne skeniranje. Kada program zavrsi skeniranje,mozda ce zatraziti da restartujes racunar. Dozvoli mu. Napomena: Kada zavrsis sa ciscenjem temp fajlova,program mozes obrisati ili ga sacuvati za kasniju upotrebu. ==================================== Reci mi ima li poboljsanja u radu?

Profil

MareBG2 Poslao: 08 Nov 2013 21:09 Idi na vrh
offline MareBG2 Građanin Pridružio: 19 Okt 2011 Poruke: 232	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Napisano: 08 Nov 2013 21:00 Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 31-10-2013 Ran by Mare at 2013-11-08 20:53:45 Run:1 Running from C:\Users\Mare\Downloads Boot Mode: Normal ============================================== Content of fixlist: *************** Start Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File FF SearchPlugin: C:\Users\Mare\AppData\Roaming\Mozilla\Firefox\Profiles\n44dl70a.default\searchplugins\mixidj.xml C:\Users\Mare\AppData\Roaming\Mozilla\Firefox\Profiles\n44dl70a.default\searchplugins\mixidj.xml CHR HKLM\...\Chrome\Extension: [eiimolhnbbbdagljikeckdkldgemmmlj] - C:\Program Files\lucky leap\eiimolhnbbbdagljikeckdkldgemmmlj.crx C:\Program Files\lucky leap Task: {082F677E-535E-4517-BB60-D8E2EEC3BCC1} - \EPUpdater No Task File C:\Users\Mare\AppData\Local\Temp CMD: ipconfig /flushdns End *************** HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => Value deleted successfully. HKCR\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => Key not found. C:\Users\Mare\AppData\Roaming\Mozilla\Firefox\Profiles\n44dl70a.default\searchplugins\mixidj.xml => Moved successfully. "C:\Users\Mare\AppData\Roaming\Mozilla\Firefox\Profiles\n44dl70a.default\searchplugins\mixidj.xml " => File/Directory not found. HKLM\SOFTWARE\Google\Chrome\Extensions\eiimolhnbbbdagljikeckdkldgemmmlj => Key deleted successfully. "C:\Program Files\lucky leap\eiimolhnbbbdagljikeckdkldgemmmlj.crx " => File/Directory not found. "C:\Program Files\lucky leap " => File/Directory not found. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{082F677E-535E-4517-BB60-D8E2EEC3BCC1} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{082F677E-535E-4517-BB60-D8E2EEC3BCC1} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\EPUpdater => Key deleted successfully. "C:\Users\Mare\AppData\Local\Temp " directory move: Could not move "C:\Users\Mare\AppData\Local\Temp " directory. => Scheduled to move on reboot. ========= ipconfig /flushdns ========= Windows IP Configuration Successfully flushed the DNS Resolver Cache. ========= End of CMD: ========= =========== Result of Scheduled Files to move =========== "C:\Users\Mare\AppData\Local\Temp " => Directory could not move. ==== End of Fixlog ==== Dopuna: 08 Nov 2013 21:09 Sama brzina podizanja sistema se ubrzala,ali i dalje kada se pojavi destop potrebno mi je 3-4 minuta da sacekam zvuk da se aktivira i da se zavrsi podizanje sistema.

Profil

magna86 Poslao: 08 Nov 2013 23:49 Idi na vrh
offline magna86 Anti Malware Fighter Rank 2 Pridružio: 21 Jun 2008 Poruke: 6104	1Ovo se svidja korisniku: MareBG2 Registruj se da bi pohvalio/la poruku! Nema ovde vise sta da se radi. Logovi ne pokazuju znakove aktivne infekcije. U neku ruku, ono sto ti smatras problemom je i normalno ponasanje racunara. Tada Windows startuje sve pratece programe i ostale aplikacije. Naravno, ukoliko zelis dodatno da trazis savete, otvori novu temu u Windows podforumu gde kolege sa tog foruma mogu udeliti po neki savet. Kako u Ambulanti radimo iskljucivo na detekciji i uklanjanju malware-a, ovde se nase druzenje blizi kraju. Ja cu sada ukloniti moje alate: Preuzmi ComboFix_Uninstaller sa ovog ili ovog linka i sacuvaj ga na Desktop. Privremeno deaktiviraj zastitni softver, dvoklikom pokreni CF_UNINST.exe i dozvoli mu da ukloni ComboFix. Potom ... Preuzmi "Xplode"-ov DelFix i sačuvaj ga na Desktop Dvoklikom pokreni program. Štikliraj sledeće opcije: Remove disinfection tools Purge System Restore Reset system settings Klikni na dugme "Run" i pričekaj da program završi rad. Alat ce ukloniti sve koriscene alate u ovoj temi... Kada alat završi, otvoriće izvestaj u notepadu. Napomena: Izvestaj ce takodje biti sacuvan na C:\DelFix.txt Nije potrebno dostavljati izvestaj. Preporučujem ti da koristiš program MCShield za zaštitu USB memorijskih uređaja. Program možeš preuzeti sa OVOG linka. Nakon instalacije programa, priključi USB memorijske uređaje, i oni će biti skenirani. Na kraju skeniranja ćeš dobiti izveštaj da je uređaj čist ili obaveštenje o uklonjenom malware-u. Takođe, poseti ovu temu da vidiš da li ti je pretraživač ranjiv i instaliraš ažurirane komponente [Link mogu videti samo ulogovani korisnici]

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Problem pri startovanju racunara

Ko je trenutno na forumu

Ukupno su 1285 korisnika na forumu :: 148 registrovanih, 9 sakrivenih i 1128 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 6018 - dana 19 Dec 2025 13:41

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: -Max-, 100jan, A.R.Chafee.Jr., AleksSE, ALEXV, AMCXXL, APS, ArchaBasha, bakos022, baza, Bo96, boj.an, Boris90, BORUTUS, Bubimir, BWG, Cavendish, CCCP, cifra, cojapop, croato, Cvijo_ue, DeerHunter, Deki Duga Devetka, Denaya, Despot Đurađ, DezurniOperativni, Dixtrix, djordjemiklusev, djuradj, Djuza, Dogma21, DonRumataEstorski, draganl, DrMrPr, Džekson, Electron, Ercomero, famoso, gasazem, Georgius, GH69, goxin, gregorxix, GrobarPovratak, Guster25, halkin gol, Hans Gajger, Hardenberg, ibssa, ikan, Ir, Iskander, jarovitt, Jozo74, kaisarevic1, Kajzer Soze, kaskadija, kikisp, klepesina, kobaja77, Konda, Kubovac, kunktator, kybonacci, ladro, lakson001, Lazur_01, Lieutenant, LostInSpaceandTime, Lucky 6, lukisa, M74AB3, malimedo01, MaschinenPistole, menges, mercedesamg, mikrimaus, Milan A. Nikolic, milanovic, MiljanXD, Mille Qravela, Milometer, mir, MiroslavD, moldway, Mrav Obrad, nebidrag, nebkv, nelezele, Nemanja.M, nenorodjo, neutrino, nisamBot, nsharambasa, Orc, Oscar, Otto Grunf, paja69, Pekman, Phaeton, picknick, pobeda, Ripanjac, royst33, sales, SamoGledam, samsung, Sanda, sasics, savaskytec, Schepan, Semberija, Semprini, Sevetar, Sharpshooter, simazr, simicnenadbg, Simonsen23, Singidunumac, Sioux7674, Sir Budimir, Sićko, Slingshot, ss10, starlights, stefan95, stefanmpurtic, StefanNS, tanakadzo, Tandrčak, tomo2, travisrise, Tumansky, uruk, vaci, Velizar Laro, vladaa012, Vlado82, vlajkox, Vojkan Petrovic, vukajlo71, x011, XBMC, zexon, Zorge, Zukov, 223223

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by