MyCity » Ambulanta -> Arhiva Ambulante » Provera

Provera

Napisano na dan: 12.10.2013

Provera
Sledeća strana Pagination

Idi na vrh

Poslao: 12 Okt 2013 15:06
Idi na vrh
offline
  • Dušan
  • Pridružio: 18 Jun 2012
  • Poruke: 986

Zamolio bih vas za proveru racunara, jer sam ubacivao sumnjivu flesku i kaspersky je registrovao virus, pa da proverim da nesto nije ostalo u racunaru Smile

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16720
Run by Dusan at 15:02:10 on 2013-10-12
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.4003.2088 [GMT 2:00]
.
AV: Kaspersky Internet Security *Enabled/Updated* {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}
SP: Kaspersky Internet Security *Enabled/Updated* {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security *Enabled* {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files\IDT\WDM\STacSV64.exe
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\IDT\WDM\AESTSr64.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
C:\Windows\system32\BtwRSupportService.exe
C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
C:\Program Files (x86)\Secunia\PSI\PSIA.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\System32\alg.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\WUDFHost.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler.exe
C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler64.exe
C:\Users\Dusan\AppData\Roaming\BitTorrent\BitTorrent.exe
C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uWindow Title = Internet Explorer, enhanced for Bing and MSN
mWinlogon: Userinit = userinit.exe
BHO: Content Blocker Plugin: {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
BHO: Virtual Keyboard Plugin: {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
BHO: Safe Money Plugin: {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: URL Advisor Plugin: {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll
uRun: [BitTorrent] "C:\Users\Dusan\AppData\Roaming\BitTorrent\BitTorrent.exe" /MINIMIZED
uRun: [AdobeBridge] <no file>
mRun: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe"
dRunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
StartupFolder: C:\Users\Dusan\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Fences.lnk - C:\Program Files (x86)\Stardock\Fences\Fences.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\SECUNI~1.LNK - C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: Add to Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ie_banner_deny.htm
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105
IE: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {0C4CC089-D306-440D-9772-464E226F6539} - {0BA14598-4178-4CE5-B1F1-B5C6408A3F2E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll
TCP: NameServer = 89.216.1.40 89.216.1.50
TCP: Interfaces\{017D778B-E2F1-4377-94DB-63CC863CD6A5} : DHCPNameServer = 89.216.1.40 89.216.1.50
TCP: Interfaces\{017D778B-E2F1-4377-94DB-63CC863CD6A5}\D4962716 : DHCPNameServer = 192.168.1.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
AppInit_DLLs= C:\Windows\SysWOW64\nvinit.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Content Blocker Plugin: {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Virtual Keyboard Plugin: {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
x64-BHO: Safe Money Plugin: {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\OnlineBanking\online_banking_bho.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-BHO: URL Advisor Plugin: {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll
x64-Run: [Fences] "C:\Program Files (x86)\Stardock\Fences\Fences.exe" /startup
x64-IE: {0C4CC089-D306-440D-9772-464E226F6539} - {0BA14598-4178-4CE5-B1F1-B5C6408A3F2E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
x64-IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
x64-STS: FencesShlExt Class - {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files (x86)\Stardock\Fences\FencesMenu64.dll
x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Dusan\AppData\Roaming\Mozilla\Firefox\Profiles\58capm0j.default\
FF - prefs.js: browser.startup.homepage - hxxps://www.google.rs/
FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll
FF - plugin: C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll
FF - ExtSQL: 2013-09-12 10:52; anti_banner@kaspersky.com; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com
FF - ExtSQL: 2013-09-12 10:52; content_blocker@kaspersky.com; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com
FF - ExtSQL: 2013-09-12 10:52; online_banking@kaspersky.com; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com
FF - ExtSQL: 2013-09-12 10:52; url_advisor@kaspersky.com; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com
FF - ExtSQL: 2013-09-12 10:52; virtual_keyboard@kaspersky.com; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com
.
============= SERVICES / DRIVERS ===============
.
R0 nvpciflt;nvpciflt;C:\Windows\System32\drivers\nvpciflt.sys [2012-10-8 30056]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver;C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2013-9-13 31136]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;C:\Windows\System32\drivers\klim6.sys [2012-8-2 28504]
R1 kltdi;kltdi;C:\Windows\System32\drivers\kltdi.sys [2013-3-6 54368]
R1 kneps;kneps;C:\Windows\System32\drivers\kneps.sys [2012-8-13 178448]
R1 nvkflt;nvkflt;C:\Windows\System32\drivers\nvkflt.sys [2012-10-8 284008]
R2 AESTFilters;Andrea ST Filters Service;C:\Program Files\IDT\WDM\AESTSr64.exe [2013-9-12 89600]
R2 AVP;Kaspersky Anti-Virus Service;C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [2013-3-6 356128]
R2 BcmBtRSupport;Bluetooth Driver Management Service;C:\Windows\System32\BtwRSupportService.exe [2013-8-9 2252504]
R2 Secunia PSI Agent;Secunia PSI Agent;C:\Program Files (x86)\Secunia\PSI\psia.exe [2013-7-3 1228504]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-10-2 382824]
R3 bcbtums;Bluetooth USB LD Filter;C:\Windows\System32\drivers\bcbtums.sys [2013-8-9 170712]
R3 BTWAMPFL;BTWAMPFL;C:\Windows\System32\drivers\btwampfl.sys [2013-8-9 166104]
R3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\System32\drivers\btwl2cap.sys [2013-9-12 39464]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver;C:\Windows\System32\drivers\CtClsFlt.sys [2013-9-12 172704]
R3 klkbdflt;Kaspersky Lab KLKBDFLT;C:\Windows\System32\drivers\klkbdflt.sys [2013-3-6 29280]
R3 klmouflt;Kaspersky Lab KLMOUFLT;C:\Windows\System32\drivers\klmouflt.sys [2013-3-6 29280]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2010-12-10 80384]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2010-12-10 181248]
R3 PSI;PSI;C:\Windows\System32\drivers\psi_mf_amd64.sys [2013-7-3 18456]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2011-6-10 539240]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 Secunia Update Agent;Secunia Update Agent;C:\Program Files (x86)\Secunia\PSI\sua.exe [2013-7-3 660184]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-9-14 19456]
S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-9-14 57856]
S4 PuranDefrag;PuranDefrag;C:\Windows\System32\PuranDefragS.exe [2013-9-20 292736]
.
=============== Created Last 30 ================
.
2013-10-10 05:18:59 2241024 ----a-w- C:\Windows\System32\wininet.dll
2013-10-10 05:18:59 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-10-09 22:30:55 -------- d-----w- C:\7b808bff9fa2668b0ee68b91
2013-10-09 16:17:20 -------- d-----w- C:\Users\Dusan\AppData\Local\Diagnostics
2013-10-09 09:25:58 633856 ----a-w- C:\Windows\System32\comctl32.dll
2013-10-09 09:25:58 530432 ----a-w- C:\Windows\SysWow64\comctl32.dll
2013-10-09 09:25:03 70656 ----a-w- C:\Windows\SysWow64\fontsub.dll
2013-10-09 09:25:03 46080 ----a-w- C:\Windows\System32\atmlib.dll
2013-10-09 09:25:03 41472 ----a-w- C:\Windows\System32\lpk.dll
2013-10-09 09:25:03 368128 ----a-w- C:\Windows\System32\atmfd.dll
2013-10-09 09:25:03 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
2013-10-09 09:25:03 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll
2013-10-09 09:25:03 25600 ----a-w- C:\Windows\SysWow64\lpk.dll
2013-10-09 09:25:03 14336 ----a-w- C:\Windows\System32\dciman32.dll
2013-10-09 09:25:03 10240 ----a-w- C:\Windows\SysWow64\dciman32.dll
2013-10-09 09:25:03 100864 ----a-w- C:\Windows\System32\fontsub.dll
2013-10-09 09:24:35 785624 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys
2013-10-09 09:24:08 185344 ----a-w- C:\Windows\System32\drivers\usbvideo.sys
2013-10-09 09:24:08 100864 ----a-w- C:\Windows\System32\drivers\usbcir.sys
2013-10-09 09:23:40 76800 ----a-w- C:\Windows\System32\drivers\hidclass.sys
2013-10-09 09:23:40 32896 ----a-w- C:\Windows\System32\drivers\hidparse.sys
2013-10-09 09:23:12 81920 ----a-w- C:\Windows\SysWow64\davclnt.dll
2013-10-09 09:23:12 259584 ----a-w- C:\Windows\System32\WebClnt.dll
2013-10-09 09:23:12 205824 ----a-w- C:\Windows\SysWow64\WebClnt.dll
2013-10-09 09:23:12 140800 ----a-w- C:\Windows\System32\drivers\mrxdav.sys
2013-10-09 09:23:12 102400 ----a-w- C:\Windows\System32\davclnt.dll
2013-10-09 09:22:45 497152 ----a-w- C:\Windows\System32\drivers\afd.sys
2013-10-09 09:22:45 327168 ----a-w- C:\Windows\System32\mswsock.dll
2013-10-09 09:22:45 231424 ----a-w- C:\Windows\SysWow64\mswsock.dll
2013-10-09 09:22:45 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-10-09 09:22:17 3155968 ----a-w- C:\Windows\System32\win32k.sys
2013-10-09 09:20:26 124112 ----a-w- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 09:20:26 102608 ----a-w- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 09:19:55 983488 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2013-10-09 09:19:25 461312 ----a-w- C:\Windows\System32\scavengeui.dll
2013-10-09 09:18:53 99840 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
2013-10-09 09:18:53 7808 ----a-w- C:\Windows\System32\drivers\usbd.sys
2013-10-09 09:18:53 52736 ----a-w- C:\Windows\System32\drivers\usbehci.sys
2013-10-09 09:18:53 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys
2013-10-09 09:18:53 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys
2013-10-09 09:18:53 30720 ----a-w- C:\Windows\System32\drivers\usbuhci.sys
2013-10-09 09:18:53 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys
2013-10-03 20:02:28 -------- d-----w- C:\Program Files (x86)\Common Files\Protexis
2013-10-03 19:36:57 -------- d-----w- C:\ProgramData\Protexis
2013-10-03 19:31:31 -------- d-----w- C:\Program Files (x86)\Common Files\Corel
2013-10-03 19:31:00 -------- d-----w- C:\ProgramData\Corel
2013-10-03 19:27:55 -------- d-----w- C:\Program Files (x86)\Corel
2013-10-02 20:47:46 -------- d-----w- C:\Program Files\Fraps
2013-09-28 16:40:50 -------- d-----w- C:\Program Files (x86)\Renesas Electronics
2013-09-28 16:03:34 -------- d-----w- C:\Program Files (x86)\Microsoft Synchronization Services
2013-09-28 16:03:03 -------- d-----w- C:\Windows\PCHEALTH
2013-09-28 16:03:02 -------- d-----w- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2013-09-28 16:01:13 -------- d-----w- C:\Program Files (x86)\Microsoft Visual Studio 8
2013-09-28 16:00:19 -------- d-----w- C:\Program Files (x86)\Microsoft Analysis Services
2013-09-28 15:59:26 -------- d-----w- C:\Users\Dusan\AppData\Local\Microsoft Help
2013-09-27 22:34:20 9694160 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{DBDD1E98-E40A-4990-8297-55C50E279BA3}\mpengine.dll
2013-09-22 17:48:08 -------- d-----w- C:\Users\Dusan\AppData\Local\jZip
2013-09-22 17:47:39 -------- d-----w- C:\Program Files (x86)\jZip
2013-09-22 10:29:36 -------- d-----w- C:\Program Files (x86)\Stardock
2013-09-21 21:01:56 -------- d-----w- C:\Users\Dusan\AppData\Local\Stardock_Corporation
2013-09-21 21:01:40 -------- d-----w- C:\ProgramData\Stardock
2013-09-21 21:00:42 -------- d-----w- C:\Users\Dusan\AppData\Roaming\Stardock
2013-09-19 22:36:10 292736 ----a-w- C:\Windows\System32\PuranDefragS.exe
2013-09-19 22:36:10 287616 ----a-w- C:\Windows\System32\PuranDC.exe
2013-09-19 22:36:10 256896 ----a-w- C:\Windows\System32\PuranDefrag.dll
2013-09-19 22:36:10 1367424 ----a-w- C:\Windows\System32\PuranFD.exe
2013-09-19 22:36:10 132480 ----a-w- C:\Windows\System32\PuranDefragBT.exe
2013-09-19 22:36:10 -------- d-----w- C:\Program Files\Puran Defrag
2013-09-19 22:34:36 -------- d-----w- C:\Users\Dusan\AppData\Local\Programs
2013-09-18 12:24:56 1424384 ----a-w- C:\Windows\System32\WindowsCodecs.dll
2013-09-18 12:24:55 1230336 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll
2013-09-18 12:23:54 1643520 ----a-w- C:\Windows\System32\DWrite.dll
2013-09-18 12:23:54 1247744 ----a-w- C:\Windows\SysWow64\DWrite.dll
2013-09-18 12:09:18 -------- d--h--w- C:\Windows\msdownld.tmp
2013-09-18 12:06:00 9728 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-17 17:50:28 -------- d-----w- C:\Users\Dusan\AppData\Roaming\NVIDIA
2013-09-17 17:46:44 -------- d-----w- C:\ProgramData\regid.1986-12.com.adobe
2013-09-17 17:25:55 -------- d-----w- C:\Users\Dusan\AppData\Local\Adobe
2013-09-14 09:59:15 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2013-09-14 09:59:15 458712 ----a-w- C:\Windows\System32\drivers\cng.sys
2013-09-14 09:59:15 340992 ----a-w- C:\Windows\System32\schannel.dll
2013-09-14 09:59:15 247808 ----a-w- C:\Windows\SysWow64\schannel.dll
2013-09-14 09:59:15 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2013-09-14 09:59:15 154480 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2013-09-14 09:59:15 1448448 ----a-w- C:\Windows\System32\lsasrv.dll
2013-09-14 09:59:12 514560 ----a-w- C:\Windows\SysWow64\qdvd.dll
2013-09-14 09:59:12 366592 ----a-w- C:\Windows\System32\qdvd.dll
2013-09-13 23:55:46 -------- d-----w- C:\Users\Dusan\AppData\Local\WindowsUpdate
2013-09-13 18:28:50 -------- d-----w- C:\Users\Dusan\AppData\Roaming\BitTorrent
2013-09-13 15:51:57 265064 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys
2013-09-13 15:51:57 144384 ----a-w- C:\Windows\System32\cdd.dll
2013-09-13 15:51:03 55296 ----a-w- C:\Windows\System32\dhcpcsvc6.dll
2013-09-13 15:51:03 44032 ----a-w- C:\Windows\SysWow64\dhcpcsvc6.dll
2013-09-13 15:51:03 226816 ----a-w- C:\Windows\System32\dhcpcore6.dll
2013-09-13 15:51:03 193536 ----a-w- C:\Windows\SysWow64\dhcpcore6.dll
2013-09-13 15:50:36 1472512 ----a-w- C:\Windows\System32\crypt32.dll
2013-09-13 15:50:35 224256 ----a-w- C:\Windows\System32\wintrust.dll
2013-09-13 15:50:35 184320 ----a-w- C:\Windows\System32\cryptsvc.dll
2013-09-13 15:50:35 175104 ----a-w- C:\Windows\SysWow64\wintrust.dll
2013-09-13 15:50:35 140288 ----a-w- C:\Windows\SysWow64\cryptsvc.dll
2013-09-13 15:50:35 139776 ----a-w- C:\Windows\System32\cryptnet.dll
2013-09-13 15:50:35 1166848 ----a-w- C:\Windows\SysWow64\crypt32.dll
2013-09-13 15:50:35 103936 ----a-w- C:\Windows\SysWow64\cryptnet.dll
2013-09-13 15:49:12 70144 ----a-w- C:\Windows\System32\appinfo.dll
2013-09-13 15:49:12 1930752 ----a-w- C:\Windows\System32\authui.dll
2013-09-13 15:49:12 1796096 ----a-w- C:\Windows\SysWow64\authui.dll
2013-09-13 15:49:12 111448 ----a-w- C:\Windows\System32\consent.exe
2013-09-13 15:48:41 48640 ----a-w- C:\Windows\System32\wwanprotdim.dll
2013-09-13 15:48:41 230400 ----a-w- C:\Windows\System32\wwansvc.dll
2013-09-13 15:47:49 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2013-09-13 15:47:49 2048 ----a-w- C:\Windows\System32\tzres.dll
2013-09-13 15:47:18 155584 ----a-w- C:\Windows\System32\drivers\ataport.sys
2013-09-13 15:46:51 1011712 ----a-w- C:\Program Files\Windows Defender\MpSvc.dll
2013-09-13 15:46:50 9216 ----a-w- C:\Program Files (x86)\Windows Defender\MpAsDesc.dll
2013-09-13 15:46:50 571904 ----a-w- C:\Program Files\Windows Defender\MpClient.dll
2013-09-13 15:46:50 54784 ----a-w- C:\Program Files (x86)\Windows Defender\MpOAV.dll
2013-09-13 15:46:50 4608 ----a-w- C:\Program Files (x86)\Windows Defender\MsMpLics.dll
2013-09-13 15:46:50 392704 ----a-w- C:\Program Files (x86)\Windows Defender\MpClient.dll
2013-09-13 15:46:50 314880 ----a-w- C:\Program Files\Windows Defender\MpCommu.dll
2013-09-13 15:46:22 950128 ----a-w- C:\Windows\System32\drivers\ndis.sys
2013-09-13 15:46:22 41472 ----a-w- C:\Windows\System32\drivers\RNDISMP.sys
2013-09-13 15:44:59 663552 ----a-w- C:\Windows\SysWow64\rpcrt4.dll
2013-09-13 15:43:37 245760 ----a-w- C:\Windows\System32\OxpsConverter.exe
2013-09-13 15:42:17 39936 ----a-w- C:\Windows\System32\drivers\tssecsrv.sys
2013-09-13 15:37:50 751104 ----a-w- C:\Windows\System32\win32spl.dll
2013-09-13 15:37:50 492544 ----a-w- C:\Windows\SysWow64\win32spl.dll
2013-09-13 15:36:47 68608 ----a-w- C:\Windows\System32\taskhost.exe
2013-09-13 15:36:27 30720 ----a-w- C:\Windows\System32\cryptdlg.dll
2013-09-13 15:36:27 24576 ----a-w- C:\Windows\SysWow64\cryptdlg.dll
2013-09-13 15:35:39 936448 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2013-09-13 15:35:39 1732608 ----a-w- C:\Program Files\Windows Journal\NBDoc.DLL
2013-09-13 15:35:39 1402880 ----a-w- C:\Program Files\Windows Journal\JNWDRV.dll
2013-09-13 15:35:39 1393152 ----a-w- C:\Program Files\Windows Journal\JNTFiltr.dll
2013-09-13 15:35:39 1367040 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\journal.dll
2013-09-13 15:34:58 903168 ----a-w- C:\Windows\SysWow64\certutil.exe
2013-09-13 15:34:58 1192448 ----a-w- C:\Windows\System32\certutil.exe
2013-09-13 15:34:57 52224 ----a-w- C:\Windows\System32\certenc.dll
2013-09-13 15:34:57 43008 ----a-w- C:\Windows\SysWow64\certenc.dll
2013-09-13 15:32:04 1887232 ----a-w- C:\Windows\System32\d3d11.dll
2013-09-13 15:32:04 1505280 ----a-w- C:\Windows\SysWow64\d3d11.dll
2013-09-13 15:20:56 9694160 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2013-09-13 09:47:17 -------- d-----w- C:\Users\Dusan\AppData\Local\Google
2013-09-13 08:39:28 31136 ----a-w- C:\Windows\SysWow64\drivers\HWiNFO64A.SYS
2013-09-13 08:39:16 -------- d-----w- C:\Program Files (x86)\HWiNFO32
2013-09-12 20:36:37 -------- d-----w- C:\Windows\System32\SPReview
2013-09-12 19:44:07 -------- d-----w- C:\temp
2013-09-12 19:39:37 -------- d-----w- C:\Windows\System32\EventProviders
2013-09-12 19:33:59 91136 ----a-w- C:\Windows\SysWow64\dot3api.dll
2013-09-12 19:32:59 8192 ----a-w- C:\Windows\System32\KBDTUQ.DLL
2013-09-12 19:30:51 244736 ----a-w- C:\Program Files\Windows Portable Devices\sqmapi.dll
2013-09-12 19:30:50 529408 ----a-w- C:\Windows\System32\wbemcomn.dll
2013-09-12 19:30:44 244736 ----a-w- C:\Windows\System32\sqmapi.dll
2013-09-12 18:54:33 -------- d-----w- C:\Users\Dusan\AppData\Local\Secunia PSI
2013-09-12 18:54:15 -------- d-----w- C:\Program Files (x86)\Secunia
2013-09-12 18:48:56 -------- d-----w- C:\AdwCleaner
2013-09-12 18:15:06 80384 ----a-w- C:\Windows\System32\drivers\BTHUSB.SYS
2013-09-12 18:15:06 552960 ----a-w- C:\Windows\System32\drivers\bthport.sys
2013-09-12 18:15:06 229376 ----a-w- C:\Windows\System32\fsquirt.exe
2013-09-12 18:13:41 410496 ----a-w- C:\Windows\System32\drivers\iaStorV.sys
2013-09-12 18:13:41 27008 ----a-w- C:\Windows\System32\drivers\amdxata.sys
2013-09-12 18:13:41 2565632 ----a-w- C:\Windows\System32\esent.dll
2013-09-12 18:13:41 189824 ----a-w- C:\Windows\System32\drivers\storport.sys
2013-09-12 18:13:41 1699328 ----a-w- C:\Windows\SysWow64\esent.dll
2013-09-12 18:13:41 166272 ----a-w- C:\Windows\System32\drivers\nvstor.sys
2013-09-12 18:13:41 148352 ----a-w- C:\Windows\System32\drivers\nvraid.sys
2013-09-12 18:13:41 107904 ----a-w- C:\Windows\System32\drivers\amdsata.sys
2013-09-12 18:13:40 96768 ----a-w- C:\Windows\System32\fsutil.exe
2013-09-12 18:13:40 74240 ----a-w- C:\Windows\SysWow64\fsutil.exe
.
==================== Find3M ====================
.
2013-10-10 08:24:29 29280 ----a-w- C:\Windows\System32\drivers\klmouflt.sys
2013-10-10 08:24:29 29280 ----a-w- C:\Windows\System32\drivers\klkbdflt.sys
2013-10-10 08:24:25 7717984 ----a-w- C:\Windows\System32\drivers\kl1.sys
2013-10-08 20:49:01 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-10-08 20:49:01 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-09-22 23:27:49 2876928 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-09-22 23:27:48 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll
2013-09-22 23:27:48 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll
2013-09-22 22:54:51 3959296 ----a-w- C:\Windows\System32\jscript9.dll
2013-09-22 22:54:50 67072 ----a-w- C:\Windows\System32\iesetup.dll
2013-09-22 22:54:50 136704 ----a-w- C:\Windows\System32\iesysprep.dll
2013-09-21 03:38:39 2706432 ----a-w- C:\Windows\System32\mshtml.tlb
2013-09-21 03:30:24 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2013-09-21 02:48:36 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe
2013-09-21 02:39:47 71680 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe
2013-09-18 12:06:00 9728 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-12 20:43:53 175616 ----a-w- C:\Windows\System32\msclmd.dll
2013-09-12 20:43:53 152576 ----a-w- C:\Windows\SysWow64\msclmd.dll
2013-09-12 09:16:09 90208 ----a-w- C:\Windows\System32\drivers\klflt.sys
2013-09-12 09:16:09 54368 ----a-w- C:\Windows\System32\drivers\kltdi.sys
2013-09-12 09:16:09 178448 ----a-w- C:\Windows\System32\drivers\kneps.sys
2013-09-12 08:41:00 75 --sh--r- C:\Windows\CT4CET.bin
2013-08-29 02:17:48 5549504 ----a-w- C:\Windows\System32\ntoskrnl.exe
2013-08-29 02:16:35 1732032 ----a-w- C:\Windows\System32\ntdll.dll
2013-08-29 02:16:28 243712 ----a-w- C:\Windows\System32\wow64.dll
2013-08-29 02:16:14 859648 ----a-w- C:\Windows\System32\tdh.dll
2013-08-29 02:13:28 878080 ----a-w- C:\Windows\System32\advapi32.dll
2013-08-29 01:51:45 3969472 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2013-08-29 01:51:45 3914176 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2013-08-29 01:50:31 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2013-08-29 01:50:30 1292192 ----a-w- C:\Windows\SysWow64\ntdll.dll
2013-08-29 01:50:16 619520 ----a-w- C:\Windows\SysWow64\tdh.dll
2013-08-29 01:48:17 640512 ----a-w- C:\Windows\SysWow64\advapi32.dll
2013-08-29 01:48:15 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
2013-08-29 00:49:53 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2013-08-29 00:49:52 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2013-08-29 00:49:52 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2013-08-29 00:49:49 2048 ----a-w- C:\Windows\SysWow64\user.exe
2013-08-09 18:02:14 66264 ----a-w- C:\Windows\System32\btwdi.dll
2013-08-09 18:02:14 2232024 ----a-w- C:\Windows\System32\BcmBtRSupport.dll
2013-08-09 18:02:14 170712 ----a-w- C:\Windows\System32\drivers\bcbtums.sys
2013-08-09 18:02:14 166104 ----a-w- C:\Windows\System32\drivers\btwampfl.sys
2013-08-09 18:02:12 2252504 ----a-w- C:\Windows\System32\BtwRSupportService.exe
2013-08-07 02:22:02 278800 ------w- C:\Windows\System32\MpSigStub.exe
2013-08-02 02:14:57 215040 ----a-w- C:\Windows\System32\winsrv.dll
2013-08-02 02:13:34 424448 ----a-w- C:\Windows\System32\KernelBase.dll
2013-08-02 01:50:42 274944 ----a-w- C:\Windows\SysWow64\KernelBase.dll
2013-08-02 01:09:17 338432 ----a-w- C:\Windows\System32\conhost.exe
2013-08-02 00:59:09 112640 ----a-w- C:\Windows\System32\smss.exe
2013-08-02 00:43:05 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2013-08-02 00:43:05 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2013-08-02 00:43:05 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2013-08-02 00:43:05 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2013-07-25 09:25:54 1888768 ----a-w- C:\Windows\System32\WMVDECOD.DLL
2013-07-25 08:57:27 1620992 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL
.
============= FINISH: 15:02:51.62 ===============

https://www.mycity.rs/must-login.png

Poslao: 12 Okt 2013 15:29
Idi na vrh
offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Preuzmite program GMER sa donjeg linka na Desktop:


GMER download
Kliknite dati link;
Kada se otvori dijalog za izbor lokacije na kojoj treba sačuvati file, odaberite Desktop i kliknite Save.


Dvoklikom pokrenite GMER.
Sačekajte da se završi uvodno skeniranje - ukoliko se pojavi bilo kakav upit, kliknite No;

kliknite Scan i sačekajte da skeniranje bude završeno;

kliknite Save ... - izveštaj sačuvajte na Desktop (pod nazivom Gmer1);

kliknite desnim tasterom u prozor programa Gmer i odaberite Options > 3rd party - kliknite Scan;

po završetku skeniranja kliknite Save ... - izveštaj sačuvajte na Desktop (pod nazivom Gmer2);

kliknite taster >>> i odaberite Autostart karticu;

po završetku kratkotrajnog skeniranja, kliknite Copy;

otvorite Notepad i u njega postavite kopirani tekst - izveštaj sačuvajte na Desktop (pod nazivom Gmer3);

Slikoviti prikaz postupka

Priložite sva tri izveštaja uz poruku korišćenjem opcije Prikači fajl.

Poslao: 12 Okt 2013 16:10
Idi na vrh
offline
  • Dušan
  • Pridružio: 18 Jun 2012
  • Poruke: 986

https://www.mycity.rs/must-login.png

Kada sam radio gmer2 program se zaustavio i iskljucio, pa ga radio ponovo
https://www.mycity.rs/must-login.png


https://www.mycity.rs/must-login.png

Poslao: 12 Okt 2013 17:22
Idi na vrh
offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Ne vidim ništa maliciozno u logovima. Instaliraj MCShield za zaštitu od napasti sa USB diskova.

Poslao: 12 Okt 2013 17:32
Idi na vrh
offline
  • Dušan
  • Pridružio: 18 Jun 2012
  • Poruke: 986

Hvala, imam jos jedno pitanje off
Posle toga sa usb-om windows mi javlja da instaliram USB controller, ja sam njega vec imao i nisam ga brisao, a u device manageru je sve u redu. Sta moze da bude?

Poslao: 12 Okt 2013 17:50
Idi na vrh
offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Pitaj u Windows potforumu.

MyCity » Ambulanta -> Arhiva Ambulante » Provera

Ko je trenutno na forumu
 

Ukupno su 970 korisnika na forumu :: 64 registrovanih, 8 sakrivenih i 898 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: 357magnum, amaterSRB, Apok, babaroga, Bobrock1, cemix, ddjxxi, delrey, Djokkinen, djuradj, Dovla, dragoljub11987, dule10savic, dulleo, Hans Gajger, HogarStrashni, ikan, ivica976, Kazablankasrb, kikisp, kolle.the.kid, Koridor, kubura91, kybonacci, ladro, lord sir giga, Luka Blažević, mean_machine, mercedesamg, Milan A. Nikolic, MrNo, nebojsag, nick79, oganj123, paja69, panzerwaffe, pein, pirke96, repac, robertino, rovac, samoborac, samocitam, sasa76, Sir Budimir, Srle993, stegonosa, Sumadija34, taz1cl, Trpe Grozni, tubular, Tvrtko I, uruk, vathra, Vatreni Zmaj, VJ, vlad4, vobo, vukovi, wolf431, zastavnik, zdrebac, Zimbabwe, |_MeD_|