Provera

Provera

offline
  • Dušan
  • Pridružio: 18 Jun 2012
  • Poruke: 986

Zamolio bih vas za proveru racunara, jer sam ubacivao sumnjivu flesku i kaspersky je registrovao virus, pa da proverim da nesto nije ostalo u racunaru Smile

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16720
Run by Dusan at 15:02:10 on 2013-10-12
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.4003.2088 [GMT 2:00]
.
AV: Kaspersky Internet Security *Enabled/Updated* {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}
SP: Kaspersky Internet Security *Enabled/Updated* {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security *Enabled* {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files\IDT\WDM\STacSV64.exe
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\IDT\WDM\AESTSr64.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
C:\Windows\system32\BtwRSupportService.exe
C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
C:\Program Files (x86)\Secunia\PSI\PSIA.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\System32\alg.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\WUDFHost.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler.exe
C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler64.exe
C:\Users\Dusan\AppData\Roaming\BitTorrent\BitTorrent.exe
C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uWindow Title = Internet Explorer, enhanced for Bing and MSN
mWinlogon: Userinit = userinit.exe
BHO: Content Blocker Plugin: {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
BHO: Virtual Keyboard Plugin: {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
BHO: Safe Money Plugin: {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: URL Advisor Plugin: {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll
uRun: [BitTorrent] "C:\Users\Dusan\AppData\Roaming\BitTorrent\BitTorrent.exe" /MINIMIZED
uRun: [AdobeBridge] <no file>
mRun: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe"
dRunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
StartupFolder: C:\Users\Dusan\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Fences.lnk - C:\Program Files (x86)\Stardock\Fences\Fences.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\SECUNI~1.LNK - C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: Add to Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ie_banner_deny.htm
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105
IE: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {0C4CC089-D306-440D-9772-464E226F6539} - {0BA14598-4178-4CE5-B1F1-B5C6408A3F2E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll
TCP: NameServer = 89.216.1.40 89.216.1.50
TCP: Interfaces\{017D778B-E2F1-4377-94DB-63CC863CD6A5} : DHCPNameServer = 89.216.1.40 89.216.1.50
TCP: Interfaces\{017D778B-E2F1-4377-94DB-63CC863CD6A5}\D4962716 : DHCPNameServer = 192.168.1.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
AppInit_DLLs= C:\Windows\SysWOW64\nvinit.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Content Blocker Plugin: {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Virtual Keyboard Plugin: {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
x64-BHO: Safe Money Plugin: {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\OnlineBanking\online_banking_bho.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-BHO: URL Advisor Plugin: {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll
x64-Run: [Fences] "C:\Program Files (x86)\Stardock\Fences\Fences.exe" /startup
x64-IE: {0C4CC089-D306-440D-9772-464E226F6539} - {0BA14598-4178-4CE5-B1F1-B5C6408A3F2E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
x64-IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
x64-STS: FencesShlExt Class - {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files (x86)\Stardock\Fences\FencesMenu64.dll
x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Dusan\AppData\Roaming\Mozilla\Firefox\Profiles\58capm0j.default\
FF - prefs.js: browser.startup.homepage - hxxps://www.google.rs/
FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll
FF - plugin: C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll
FF - ExtSQL: 2013-09-12 10:52; anti_banner@kaspersky.com; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com
FF - ExtSQL: 2013-09-12 10:52; content_blocker@kaspersky.com; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com
FF - ExtSQL: 2013-09-12 10:52; online_banking@kaspersky.com; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com
FF - ExtSQL: 2013-09-12 10:52; url_advisor@kaspersky.com; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com
FF - ExtSQL: 2013-09-12 10:52; virtual_keyboard@kaspersky.com; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com
.
============= SERVICES / DRIVERS ===============
.
R0 nvpciflt;nvpciflt;C:\Windows\System32\drivers\nvpciflt.sys [2012-10-8 30056]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver;C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2013-9-13 31136]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;C:\Windows\System32\drivers\klim6.sys [2012-8-2 28504]
R1 kltdi;kltdi;C:\Windows\System32\drivers\kltdi.sys [2013-3-6 54368]
R1 kneps;kneps;C:\Windows\System32\drivers\kneps.sys [2012-8-13 178448]
R1 nvkflt;nvkflt;C:\Windows\System32\drivers\nvkflt.sys [2012-10-8 284008]
R2 AESTFilters;Andrea ST Filters Service;C:\Program Files\IDT\WDM\AESTSr64.exe [2013-9-12 89600]
R2 AVP;Kaspersky Anti-Virus Service;C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [2013-3-6 356128]
R2 BcmBtRSupport;Bluetooth Driver Management Service;C:\Windows\System32\BtwRSupportService.exe [2013-8-9 2252504]
R2 Secunia PSI Agent;Secunia PSI Agent;C:\Program Files (x86)\Secunia\PSI\psia.exe [2013-7-3 1228504]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-10-2 382824]
R3 bcbtums;Bluetooth USB LD Filter;C:\Windows\System32\drivers\bcbtums.sys [2013-8-9 170712]
R3 BTWAMPFL;BTWAMPFL;C:\Windows\System32\drivers\btwampfl.sys [2013-8-9 166104]
R3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\System32\drivers\btwl2cap.sys [2013-9-12 39464]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver;C:\Windows\System32\drivers\CtClsFlt.sys [2013-9-12 172704]
R3 klkbdflt;Kaspersky Lab KLKBDFLT;C:\Windows\System32\drivers\klkbdflt.sys [2013-3-6 29280]
R3 klmouflt;Kaspersky Lab KLMOUFLT;C:\Windows\System32\drivers\klmouflt.sys [2013-3-6 29280]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2010-12-10 80384]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2010-12-10 181248]
R3 PSI;PSI;C:\Windows\System32\drivers\psi_mf_amd64.sys [2013-7-3 18456]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2011-6-10 539240]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 Secunia Update Agent;Secunia Update Agent;C:\Program Files (x86)\Secunia\PSI\sua.exe [2013-7-3 660184]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-9-14 19456]
S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-9-14 57856]
S4 PuranDefrag;PuranDefrag;C:\Windows\System32\PuranDefragS.exe [2013-9-20 292736]
.
=============== Created Last 30 ================
.
2013-10-10 05:18:59 2241024 ----a-w- C:\Windows\System32\wininet.dll
2013-10-10 05:18:59 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-10-09 22:30:55 -------- d-----w- C:\7b808bff9fa2668b0ee68b91
2013-10-09 16:17:20 -------- d-----w- C:\Users\Dusan\AppData\Local\Diagnostics
2013-10-09 09:25:58 633856 ----a-w- C:\Windows\System32\comctl32.dll
2013-10-09 09:25:58 530432 ----a-w- C:\Windows\SysWow64\comctl32.dll
2013-10-09 09:25:03 70656 ----a-w- C:\Windows\SysWow64\fontsub.dll
2013-10-09 09:25:03 46080 ----a-w- C:\Windows\System32\atmlib.dll
2013-10-09 09:25:03 41472 ----a-w- C:\Windows\System32\lpk.dll
2013-10-09 09:25:03 368128 ----a-w- C:\Windows\System32\atmfd.dll
2013-10-09 09:25:03 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
2013-10-09 09:25:03 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll
2013-10-09 09:25:03 25600 ----a-w- C:\Windows\SysWow64\lpk.dll
2013-10-09 09:25:03 14336 ----a-w- C:\Windows\System32\dciman32.dll
2013-10-09 09:25:03 10240 ----a-w- C:\Windows\SysWow64\dciman32.dll
2013-10-09 09:25:03 100864 ----a-w- C:\Windows\System32\fontsub.dll
2013-10-09 09:24:35 785624 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys
2013-10-09 09:24:08 185344 ----a-w- C:\Windows\System32\drivers\usbvideo.sys
2013-10-09 09:24:08 100864 ----a-w- C:\Windows\System32\drivers\usbcir.sys
2013-10-09 09:23:40 76800 ----a-w- C:\Windows\System32\drivers\hidclass.sys
2013-10-09 09:23:40 32896 ----a-w- C:\Windows\System32\drivers\hidparse.sys
2013-10-09 09:23:12 81920 ----a-w- C:\Windows\SysWow64\davclnt.dll
2013-10-09 09:23:12 259584 ----a-w- C:\Windows\System32\WebClnt.dll
2013-10-09 09:23:12 205824 ----a-w- C:\Windows\SysWow64\WebClnt.dll
2013-10-09 09:23:12 140800 ----a-w- C:\Windows\System32\drivers\mrxdav.sys
2013-10-09 09:23:12 102400 ----a-w- C:\Windows\System32\davclnt.dll
2013-10-09 09:22:45 497152 ----a-w- C:\Windows\System32\drivers\afd.sys
2013-10-09 09:22:45 327168 ----a-w- C:\Windows\System32\mswsock.dll
2013-10-09 09:22:45 231424 ----a-w- C:\Windows\SysWow64\mswsock.dll
2013-10-09 09:22:45 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-10-09 09:22:17 3155968 ----a-w- C:\Windows\System32\win32k.sys
2013-10-09 09:20:26 124112 ----a-w- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 09:20:26 102608 ----a-w- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 09:19:55 983488 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2013-10-09 09:19:25 461312 ----a-w- C:\Windows\System32\scavengeui.dll
2013-10-09 09:18:53 99840 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
2013-10-09 09:18:53 7808 ----a-w- C:\Windows\System32\drivers\usbd.sys
2013-10-09 09:18:53 52736 ----a-w- C:\Windows\System32\drivers\usbehci.sys
2013-10-09 09:18:53 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys
2013-10-09 09:18:53 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys
2013-10-09 09:18:53 30720 ----a-w- C:\Windows\System32\drivers\usbuhci.sys
2013-10-09 09:18:53 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys
2013-10-03 20:02:28 -------- d-----w- C:\Program Files (x86)\Common Files\Protexis
2013-10-03 19:36:57 -------- d-----w- C:\ProgramData\Protexis
2013-10-03 19:31:31 -------- d-----w- C:\Program Files (x86)\Common Files\Corel
2013-10-03 19:31:00 -------- d-----w- C:\ProgramData\Corel
2013-10-03 19:27:55 -------- d-----w- C:\Program Files (x86)\Corel
2013-10-02 20:47:46 -------- d-----w- C:\Program Files\Fraps
2013-09-28 16:40:50 -------- d-----w- C:\Program Files (x86)\Renesas Electronics
2013-09-28 16:03:34 -------- d-----w- C:\Program Files (x86)\Microsoft Synchronization Services
2013-09-28 16:03:03 -------- d-----w- C:\Windows\PCHEALTH
2013-09-28 16:03:02 -------- d-----w- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2013-09-28 16:01:13 -------- d-----w- C:\Program Files (x86)\Microsoft Visual Studio 8
2013-09-28 16:00:19 -------- d-----w- C:\Program Files (x86)\Microsoft Analysis Services
2013-09-28 15:59:26 -------- d-----w- C:\Users\Dusan\AppData\Local\Microsoft Help
2013-09-27 22:34:20 9694160 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{DBDD1E98-E40A-4990-8297-55C50E279BA3}\mpengine.dll
2013-09-22 17:48:08 -------- d-----w- C:\Users\Dusan\AppData\Local\jZip
2013-09-22 17:47:39 -------- d-----w- C:\Program Files (x86)\jZip
2013-09-22 10:29:36 -------- d-----w- C:\Program Files (x86)\Stardock
2013-09-21 21:01:56 -------- d-----w- C:\Users\Dusan\AppData\Local\Stardock_Corporation
2013-09-21 21:01:40 -------- d-----w- C:\ProgramData\Stardock
2013-09-21 21:00:42 -------- d-----w- C:\Users\Dusan\AppData\Roaming\Stardock
2013-09-19 22:36:10 292736 ----a-w- C:\Windows\System32\PuranDefragS.exe
2013-09-19 22:36:10 287616 ----a-w- C:\Windows\System32\PuranDC.exe
2013-09-19 22:36:10 256896 ----a-w- C:\Windows\System32\PuranDefrag.dll
2013-09-19 22:36:10 1367424 ----a-w- C:\Windows\System32\PuranFD.exe
2013-09-19 22:36:10 132480 ----a-w- C:\Windows\System32\PuranDefragBT.exe
2013-09-19 22:36:10 -------- d-----w- C:\Program Files\Puran Defrag
2013-09-19 22:34:36 -------- d-----w- C:\Users\Dusan\AppData\Local\Programs
2013-09-18 12:24:56 1424384 ----a-w- C:\Windows\System32\WindowsCodecs.dll
2013-09-18 12:24:55 1230336 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll
2013-09-18 12:23:54 1643520 ----a-w- C:\Windows\System32\DWrite.dll
2013-09-18 12:23:54 1247744 ----a-w- C:\Windows\SysWow64\DWrite.dll
2013-09-18 12:09:18 -------- d--h--w- C:\Windows\msdownld.tmp
2013-09-18 12:06:00 9728 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-17 17:50:28 -------- d-----w- C:\Users\Dusan\AppData\Roaming\NVIDIA
2013-09-17 17:46:44 -------- d-----w- C:\ProgramData\regid.1986-12.com.adobe
2013-09-17 17:25:55 -------- d-----w- C:\Users\Dusan\AppData\Local\Adobe
2013-09-14 09:59:15 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2013-09-14 09:59:15 458712 ----a-w- C:\Windows\System32\drivers\cng.sys
2013-09-14 09:59:15 340992 ----a-w- C:\Windows\System32\schannel.dll
2013-09-14 09:59:15 247808 ----a-w- C:\Windows\SysWow64\schannel.dll
2013-09-14 09:59:15 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2013-09-14 09:59:15 154480 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2013-09-14 09:59:15 1448448 ----a-w- C:\Windows\System32\lsasrv.dll
2013-09-14 09:59:12 514560 ----a-w- C:\Windows\SysWow64\qdvd.dll
2013-09-14 09:59:12 366592 ----a-w- C:\Windows\System32\qdvd.dll
2013-09-13 23:55:46 -------- d-----w- C:\Users\Dusan\AppData\Local\WindowsUpdate
2013-09-13 18:28:50 -------- d-----w- C:\Users\Dusan\AppData\Roaming\BitTorrent
2013-09-13 15:51:57 265064 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys
2013-09-13 15:51:57 144384 ----a-w- C:\Windows\System32\cdd.dll
2013-09-13 15:51:03 55296 ----a-w- C:\Windows\System32\dhcpcsvc6.dll
2013-09-13 15:51:03 44032 ----a-w- C:\Windows\SysWow64\dhcpcsvc6.dll
2013-09-13 15:51:03 226816 ----a-w- C:\Windows\System32\dhcpcore6.dll
2013-09-13 15:51:03 193536 ----a-w- C:\Windows\SysWow64\dhcpcore6.dll
2013-09-13 15:50:36 1472512 ----a-w- C:\Windows\System32\crypt32.dll
2013-09-13 15:50:35 224256 ----a-w- C:\Windows\System32\wintrust.dll
2013-09-13 15:50:35 184320 ----a-w- C:\Windows\System32\cryptsvc.dll
2013-09-13 15:50:35 175104 ----a-w- C:\Windows\SysWow64\wintrust.dll
2013-09-13 15:50:35 140288 ----a-w- C:\Windows\SysWow64\cryptsvc.dll
2013-09-13 15:50:35 139776 ----a-w- C:\Windows\System32\cryptnet.dll
2013-09-13 15:50:35 1166848 ----a-w- C:\Windows\SysWow64\crypt32.dll
2013-09-13 15:50:35 103936 ----a-w- C:\Windows\SysWow64\cryptnet.dll
2013-09-13 15:49:12 70144 ----a-w- C:\Windows\System32\appinfo.dll
2013-09-13 15:49:12 1930752 ----a-w- C:\Windows\System32\authui.dll
2013-09-13 15:49:12 1796096 ----a-w- C:\Windows\SysWow64\authui.dll
2013-09-13 15:49:12 111448 ----a-w- C:\Windows\System32\consent.exe
2013-09-13 15:48:41 48640 ----a-w- C:\Windows\System32\wwanprotdim.dll
2013-09-13 15:48:41 230400 ----a-w- C:\Windows\System32\wwansvc.dll
2013-09-13 15:47:49 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2013-09-13 15:47:49 2048 ----a-w- C:\Windows\System32\tzres.dll
2013-09-13 15:47:18 155584 ----a-w- C:\Windows\System32\drivers\ataport.sys
2013-09-13 15:46:51 1011712 ----a-w- C:\Program Files\Windows Defender\MpSvc.dll
2013-09-13 15:46:50 9216 ----a-w- C:\Program Files (x86)\Windows Defender\MpAsDesc.dll
2013-09-13 15:46:50 571904 ----a-w- C:\Program Files\Windows Defender\MpClient.dll
2013-09-13 15:46:50 54784 ----a-w- C:\Program Files (x86)\Windows Defender\MpOAV.dll
2013-09-13 15:46:50 4608 ----a-w- C:\Program Files (x86)\Windows Defender\MsMpLics.dll
2013-09-13 15:46:50 392704 ----a-w- C:\Program Files (x86)\Windows Defender\MpClient.dll
2013-09-13 15:46:50 314880 ----a-w- C:\Program Files\Windows Defender\MpCommu.dll
2013-09-13 15:46:22 950128 ----a-w- C:\Windows\System32\drivers\ndis.sys
2013-09-13 15:46:22 41472 ----a-w- C:\Windows\System32\drivers\RNDISMP.sys
2013-09-13 15:44:59 663552 ----a-w- C:\Windows\SysWow64\rpcrt4.dll
2013-09-13 15:43:37 245760 ----a-w- C:\Windows\System32\OxpsConverter.exe
2013-09-13 15:42:17 39936 ----a-w- C:\Windows\System32\drivers\tssecsrv.sys
2013-09-13 15:37:50 751104 ----a-w- C:\Windows\System32\win32spl.dll
2013-09-13 15:37:50 492544 ----a-w- C:\Windows\SysWow64\win32spl.dll
2013-09-13 15:36:47 68608 ----a-w- C:\Windows\System32\taskhost.exe
2013-09-13 15:36:27 30720 ----a-w- C:\Windows\System32\cryptdlg.dll
2013-09-13 15:36:27 24576 ----a-w- C:\Windows\SysWow64\cryptdlg.dll
2013-09-13 15:35:39 936448 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2013-09-13 15:35:39 1732608 ----a-w- C:\Program Files\Windows Journal\NBDoc.DLL
2013-09-13 15:35:39 1402880 ----a-w- C:\Program Files\Windows Journal\JNWDRV.dll
2013-09-13 15:35:39 1393152 ----a-w- C:\Program Files\Windows Journal\JNTFiltr.dll
2013-09-13 15:35:39 1367040 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\journal.dll
2013-09-13 15:34:58 903168 ----a-w- C:\Windows\SysWow64\certutil.exe
2013-09-13 15:34:58 1192448 ----a-w- C:\Windows\System32\certutil.exe
2013-09-13 15:34:57 52224 ----a-w- C:\Windows\System32\certenc.dll
2013-09-13 15:34:57 43008 ----a-w- C:\Windows\SysWow64\certenc.dll
2013-09-13 15:32:04 1887232 ----a-w- C:\Windows\System32\d3d11.dll
2013-09-13 15:32:04 1505280 ----a-w- C:\Windows\SysWow64\d3d11.dll
2013-09-13 15:20:56 9694160 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2013-09-13 09:47:17 -------- d-----w- C:\Users\Dusan\AppData\Local\Google
2013-09-13 08:39:28 31136 ----a-w- C:\Windows\SysWow64\drivers\HWiNFO64A.SYS
2013-09-13 08:39:16 -------- d-----w- C:\Program Files (x86)\HWiNFO32
2013-09-12 20:36:37 -------- d-----w- C:\Windows\System32\SPReview
2013-09-12 19:44:07 -------- d-----w- C:\temp
2013-09-12 19:39:37 -------- d-----w- C:\Windows\System32\EventProviders
2013-09-12 19:33:59 91136 ----a-w- C:\Windows\SysWow64\dot3api.dll
2013-09-12 19:32:59 8192 ----a-w- C:\Windows\System32\KBDTUQ.DLL
2013-09-12 19:30:51 244736 ----a-w- C:\Program Files\Windows Portable Devices\sqmapi.dll
2013-09-12 19:30:50 529408 ----a-w- C:\Windows\System32\wbemcomn.dll
2013-09-12 19:30:44 244736 ----a-w- C:\Windows\System32\sqmapi.dll
2013-09-12 18:54:33 -------- d-----w- C:\Users\Dusan\AppData\Local\Secunia PSI
2013-09-12 18:54:15 -------- d-----w- C:\Program Files (x86)\Secunia
2013-09-12 18:48:56 -------- d-----w- C:\AdwCleaner
2013-09-12 18:15:06 80384 ----a-w- C:\Windows\System32\drivers\BTHUSB.SYS
2013-09-12 18:15:06 552960 ----a-w- C:\Windows\System32\drivers\bthport.sys
2013-09-12 18:15:06 229376 ----a-w- C:\Windows\System32\fsquirt.exe
2013-09-12 18:13:41 410496 ----a-w- C:\Windows\System32\drivers\iaStorV.sys
2013-09-12 18:13:41 27008 ----a-w- C:\Windows\System32\drivers\amdxata.sys
2013-09-12 18:13:41 2565632 ----a-w- C:\Windows\System32\esent.dll
2013-09-12 18:13:41 189824 ----a-w- C:\Windows\System32\drivers\storport.sys
2013-09-12 18:13:41 1699328 ----a-w- C:\Windows\SysWow64\esent.dll
2013-09-12 18:13:41 166272 ----a-w- C:\Windows\System32\drivers\nvstor.sys
2013-09-12 18:13:41 148352 ----a-w- C:\Windows\System32\drivers\nvraid.sys
2013-09-12 18:13:41 107904 ----a-w- C:\Windows\System32\drivers\amdsata.sys
2013-09-12 18:13:40 96768 ----a-w- C:\Windows\System32\fsutil.exe
2013-09-12 18:13:40 74240 ----a-w- C:\Windows\SysWow64\fsutil.exe
.
==================== Find3M ====================
.
2013-10-10 08:24:29 29280 ----a-w- C:\Windows\System32\drivers\klmouflt.sys
2013-10-10 08:24:29 29280 ----a-w- C:\Windows\System32\drivers\klkbdflt.sys
2013-10-10 08:24:25 7717984 ----a-w- C:\Windows\System32\drivers\kl1.sys
2013-10-08 20:49:01 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-10-08 20:49:01 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-09-22 23:27:49 2876928 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-09-22 23:27:48 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll
2013-09-22 23:27:48 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll
2013-09-22 22:54:51 3959296 ----a-w- C:\Windows\System32\jscript9.dll
2013-09-22 22:54:50 67072 ----a-w- C:\Windows\System32\iesetup.dll
2013-09-22 22:54:50 136704 ----a-w- C:\Windows\System32\iesysprep.dll
2013-09-21 03:38:39 2706432 ----a-w- C:\Windows\System32\mshtml.tlb
2013-09-21 03:30:24 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2013-09-21 02:48:36 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe
2013-09-21 02:39:47 71680 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe
2013-09-18 12:06:00 9728 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-12 20:43:53 175616 ----a-w- C:\Windows\System32\msclmd.dll
2013-09-12 20:43:53 152576 ----a-w- C:\Windows\SysWow64\msclmd.dll
2013-09-12 09:16:09 90208 ----a-w- C:\Windows\System32\drivers\klflt.sys
2013-09-12 09:16:09 54368 ----a-w- C:\Windows\System32\drivers\kltdi.sys
2013-09-12 09:16:09 178448 ----a-w- C:\Windows\System32\drivers\kneps.sys
2013-09-12 08:41:00 75 --sh--r- C:\Windows\CT4CET.bin
2013-08-29 02:17:48 5549504 ----a-w- C:\Windows\System32\ntoskrnl.exe
2013-08-29 02:16:35 1732032 ----a-w- C:\Windows\System32\ntdll.dll
2013-08-29 02:16:28 243712 ----a-w- C:\Windows\System32\wow64.dll
2013-08-29 02:16:14 859648 ----a-w- C:\Windows\System32\tdh.dll
2013-08-29 02:13:28 878080 ----a-w- C:\Windows\System32\advapi32.dll
2013-08-29 01:51:45 3969472 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2013-08-29 01:51:45 3914176 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2013-08-29 01:50:31 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2013-08-29 01:50:30 1292192 ----a-w- C:\Windows\SysWow64\ntdll.dll
2013-08-29 01:50:16 619520 ----a-w- C:\Windows\SysWow64\tdh.dll
2013-08-29 01:48:17 640512 ----a-w- C:\Windows\SysWow64\advapi32.dll
2013-08-29 01:48:15 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
2013-08-29 00:49:53 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2013-08-29 00:49:52 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2013-08-29 00:49:52 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2013-08-29 00:49:49 2048 ----a-w- C:\Windows\SysWow64\user.exe
2013-08-09 18:02:14 66264 ----a-w- C:\Windows\System32\btwdi.dll
2013-08-09 18:02:14 2232024 ----a-w- C:\Windows\System32\BcmBtRSupport.dll
2013-08-09 18:02:14 170712 ----a-w- C:\Windows\System32\drivers\bcbtums.sys
2013-08-09 18:02:14 166104 ----a-w- C:\Windows\System32\drivers\btwampfl.sys
2013-08-09 18:02:12 2252504 ----a-w- C:\Windows\System32\BtwRSupportService.exe
2013-08-07 02:22:02 278800 ------w- C:\Windows\System32\MpSigStub.exe
2013-08-02 02:14:57 215040 ----a-w- C:\Windows\System32\winsrv.dll
2013-08-02 02:13:34 424448 ----a-w- C:\Windows\System32\KernelBase.dll
2013-08-02 01:50:42 274944 ----a-w- C:\Windows\SysWow64\KernelBase.dll
2013-08-02 01:09:17 338432 ----a-w- C:\Windows\System32\conhost.exe
2013-08-02 00:59:09 112640 ----a-w- C:\Windows\System32\smss.exe
2013-08-02 00:43:05 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2013-08-02 00:43:05 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2013-08-02 00:43:05 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2013-08-02 00:43:05 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2013-07-25 09:25:54 1888768 ----a-w- C:\Windows\System32\WMVDECOD.DLL
2013-07-25 08:57:27 1620992 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL
.
============= FINISH: 15:02:51.62 ===============

https://www.mycity.rs/must-login.png

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10616
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Preuzmite program GMER sa donjeg linka na Desktop:


GMER download
Kliknite dati link;
Kada se otvori dijalog za izbor lokacije na kojoj treba sačuvati file, odaberite Desktop i kliknite Save.



Dvoklikom pokrenite GMER.
Sačekajte da se završi uvodno skeniranje - ukoliko se pojavi bilo kakav upit, kliknite No;

kliknite Scan i sačekajte da skeniranje bude završeno;

kliknite Save ... - izveštaj sačuvajte na Desktop (pod nazivom Gmer1);

kliknite desnim tasterom u prozor programa Gmer i odaberite Options > 3rd party - kliknite Scan;

po završetku skeniranja kliknite Save ... - izveštaj sačuvajte na Desktop (pod nazivom Gmer2);

kliknite taster >>> i odaberite Autostart karticu;

po završetku kratkotrajnog skeniranja, kliknite Copy;

otvorite Notepad i u njega postavite kopirani tekst - izveštaj sačuvajte na Desktop (pod nazivom Gmer3);


Slikoviti prikaz postupka

Priložite sva tri izveštaja uz poruku korišćenjem opcije Prikači fajl.

offline
  • Dušan
  • Pridružio: 18 Jun 2012
  • Poruke: 986

https://www.mycity.rs/must-login.png

Kada sam radio gmer2 program se zaustavio i iskljucio, pa ga radio ponovo
https://www.mycity.rs/must-login.png


https://www.mycity.rs/must-login.png

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10616
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Ne vidim ništa maliciozno u logovima. Instaliraj MCShield za zaštitu od napasti sa USB diskova.

offline
  • Dušan
  • Pridružio: 18 Jun 2012
  • Poruke: 986

Hvala, imam jos jedno pitanje off
Posle toga sa usb-om windows mi javlja da instaliram USB controller, ja sam njega vec imao i nisam ga brisao, a u device manageru je sve u redu. Sta moze da bude?

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10616
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Pitaj u Windows potforumu.

Ko je trenutno na forumu
 

Ukupno su 504 korisnika na forumu :: 15 registrovanih, 1 sakriven i 488 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: A.R.Chafee.Jr., Arhiv, Belac91, Boris90, BraneS, darkstar101, Dvojac005, kybonacci, Leonardo, Snorks, Srki94, Tas011, Taso, Username1000, vasa.93