MyCity » Ambulanta -> Arhiva Ambulante » Provjera

Provjera

Napisano na dan: 15.9.2017

Provjera

Odgovori

TheSpringEagle Poslao: 15 Sep 2017 00:16 Idi na vrh
offline TheSpringEagle AMF student Anunnaki Pridružio: 20 Apr 2012 Poruke: 1645	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Pozdrav forumasi, htio bih da provjerim moj laptop od virusa. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-09-2017 01 Ran by Milutinac (administrator) on DESKTOP-BD1OKPJ (15-09-2017 01:06:29) Running from C:\Users\Milutinac\Desktop Loaded Profiles: Milutinac (Available Profiles: Milutinac) Platform: Windows 10 Pro Version 1607 (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe () C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe (Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe () C:\Windows\System32\igfxTray.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe () C:\Program Files\WindowsApps\Microsoft.Getstarted_5.11.1641.0_x64__8wekyb3d8bbwe\WhatsNew.Store.exe (Microsoft Corporation) C:\Windows\System32\InstallAgent.exe (Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.1561_none_7ef6e89821f9a6be\TiWorker.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe (Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\AM_Delta.exe (Microsoft Corporation) C:\Windows\System32\MpSigStub.exe ==================== Registry (Whitelisted) ==================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8911872 2016-10-15] (Realtek Semiconductor) HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2017-04-28] (Microsoft Corporation) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-09-09] (Apple Inc.) HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2137744 2016-10-08] (Wondershare) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION HKU\S-1-5-21-131887269-2774481433-2147826050-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9818328 2017-06-30] (Piriform Ltd) HKU\S-1-5-21-131887269-2774481433-2147826050-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53123712 2016-05-17] (Skype Technologies S.A.) HKU\S-1-5-21-131887269-2774481433-2147826050-1001\...\Run: [BingSvc] => C:\Users\Milutinac\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation) HKU\S-1-5-21-131887269-2774481433-2147826050-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1052488 2017-09-10] () GroupPolicy: Restriction <==== ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{93cbdad6-27ec-467f-bd88-4ffb5f0f5afa}: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{b2812e00-c166-4e5e-94f8-44763a46d164}: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{fa489374-6741-4728-bbb1-27be01f0e4cf}: [DhcpNameServer] 192.168.0.1 Internet Explorer: ================== HKU\S-1-5-21-131887269-2774481433-2147826050-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie SearchScopes: HKU\S-1-5-21-131887269-2774481433-2147826050-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear SearchScopes: HKU\S-1-5-21-131887269-2774481433-2147826050-1001 -> {E969F78B-77A9-444D-9D02-EE47C5AC1336} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=NRO&o=101913&src=kw&q={searchTerms}&locale=en_US&apn_ptnrs=^EW&apn_dtid=^YYYYYY^YY^ME&apn_uid=4B92BF90-496F-4724-8EDC-90943D2918C7&apn_sauid=68DD31A1-C37D-4FD9-934C-03AB5175331F BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-01-21] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-01-21] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation) FireFox: ======== FF DefaultProfile: 3e4grv65.default-1502571770511 FF ProfilePath: C:\Users\Milutinac\AppData\Roaming\Mozilla\Firefox\Profiles\3e4grv65.default-1502571770511 [2017-08-12] FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-06-06] (Google, Inc.) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-01-10] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-08-18] (Adobe Systems Inc.) Chrome: ======= CHR HomePage: Default -> msn.com CHR StartupUrls: Default -> "hxxp://www.google.co.uk/" CHR Profile: C:\Users\Milutinac\AppData\Local\Google\Chrome\User Data\Default [2017-09-15] CHR Extension: (Google Drive) - C:\Users\Milutinac\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-01] CHR Extension: (YouTube) - C:\Users\Milutinac\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-01] CHR Extension: (Chrome Web Store Payments) - C:\Users\Milutinac\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22] CHR Extension: (Gmail) - C:\Users\Milutinac\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-02-01] CHR Extension: (Chrome Media Router) - C:\Users\Milutinac\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-15] CHR HKU\S-1-5-21-131887269-2774481433-2147826050-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fkkcgfbgohboipdhliafmacjnhjbhmim] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-08-05] (Apple Inc.) R2 esifsvc; C:\WINDOWS\SysWoW64\esif_uf.exe [1394360 2016-05-11] (Intel Corporation) R2 ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-03-09] () R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373720 2017-04-28] (Intel Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation) R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-07-06] (Intel Corporation) [File not signed] S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-07-06] () [File not signed] R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-12-03] (Intel Corporation) S3 MyWiFiDHCPDNS; c:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-10-28] () S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1450824 2017-09-10] (Overwolf LTD) R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [326656 2016-10-15] (Realtek Semiconductor) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889888 2017-08-01] (Microsoft Corporation) R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [266848 2016-12-27] (Synaptics Incorporated) R2 SystemUsageReportSvc_WILLAMETTE; C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [118424 2016-03-09] () S3 USER_ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-03-09] () R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-08-01] (Microsoft Corporation) R2 ZeroConfigService; c:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3831712 2015-10-28] (Intel® Corporation) ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 bcbtums; C:\WINDOWS\system32\DRIVERS\bcbtums.sys [177432 2015-12-01] (Broadcom Corporation.) S3 BCM43XX; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [11794376 2017-07-13] (Broadcom Corp) R3 BCMWL63A; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [11794376 2017-07-13] (Broadcom Corp) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.) R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [53752 2016-05-11] (Intel Corporation) R3 dptf_pch; C:\WINDOWS\System32\drivers\dptf_pch.sys [50696 2016-05-11] (Intel Corporation) R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [261624 2016-05-11] (Intel Corporation) R1 MpKsl71a5cced; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F182B135-2AA2-4515-B786-25546C62D7BE}\MpKsl71a5cced.sys [44928 2017-09-09] (Microsoft Corporation) S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] () R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [895256 2015-06-16] (Realtek ) R3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [21984 2016-03-09] () R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [72792 2016-12-27] (Synaptics Incorporated) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.) S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.) S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation) R3 WirelessButtonDriver64; C:\WINDOWS\system32\DRIVERS\WirelessButtonDriver64.sys [31656 2016-05-11] (HP) S1 MpKsl1c8e1710; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2723D5EA-C534-45C7-BAA0-42CA46533D19}\MpKsl1c8e1710.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-09-15 01:06 - 2017-09-15 01:09 - 000015487 _____ C:\Users\Milutinac\Desktop\FRST.txt 2017-09-15 01:06 - 2017-09-15 01:06 - 000000000 ____D C:\FRST 2017-09-15 01:00 - 2017-09-15 01:01 - 002398208 _____ (Farbar) C:\Users\Milutinac\Desktop\FRST64.exe 2017-09-09 22:40 - 2017-09-09 22:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TP-LINK 2017-09-09 22:40 - 2013-05-28 13:37 - 000011088 _____ C:\WINDOWS\system32\netr28ux.cat 2017-09-09 22:40 - 2012-09-28 18:55 - 001979464 _____ (Ralink Technology Corp.) C:\WINDOWS\system32\netr28ux.sys 2017-09-09 22:40 - 2012-09-28 18:55 - 001979464 _____ (Ralink Technology Corp.) C:\WINDOWS\system32\Drivers\netr28ux.sys 2017-09-09 22:40 - 2012-07-16 16:34 - 000327008 _____ (Ralink Technology, Inc.) C:\WINDOWS\system32\RaCoInstx.dll 2017-09-09 22:40 - 2012-07-16 16:34 - 000014119 _____ C:\WINDOWS\system32\RaCoInst.dat 2017-09-03 13:30 - 2017-08-04 07:31 - 001564512 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2017-09-03 13:30 - 2017-08-04 07:31 - 001214816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2017-09-03 13:30 - 2017-08-04 07:31 - 000629088 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2017-09-03 13:30 - 2017-08-04 07:31 - 000544096 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2017-09-03 13:30 - 2017-08-04 07:31 - 000335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll 2017-09-03 13:30 - 2017-08-04 07:31 - 000334176 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2017-09-03 13:30 - 2017-08-04 07:31 - 000233824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2017-09-03 13:30 - 2017-08-04 07:31 - 000136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2017-09-03 13:30 - 2017-08-04 07:31 - 000096608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2017-09-03 13:30 - 2017-08-04 07:31 - 000034656 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2017-09-03 13:30 - 2017-08-04 06:26 - 000192864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll 2017-08-22 12:42 - 2017-08-22 12:42 - 000000000 ____D C:\Users\Milutinac\Downloads\Life (2017) [1080p] [YTS.AG] 2017-08-20 20:23 - 2017-08-20 20:24 - 001788284 _____ C:\WINDOWS\Minidump\082017-32343-01.dmp 2017-08-20 20:23 - 2017-08-20 20:23 - 515103119 _____ C:\WINDOWS\MEMORY.DMP ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-09-15 01:05 - 2016-11-07 19:28 - 000004174 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{2447E1C6-3AC6-4299-B51E-196E14385942} 2017-09-15 01:02 - 2016-07-16 13:36 - 000000000 ____D C:\WINDOWS\CbsTemp 2017-09-15 00:59 - 2017-01-12 22:04 - 000000000 ____D C:\Program Files (x86)\Overwolf 2017-09-15 00:53 - 2016-07-16 13:47 - 000000000 ___HD C:\Program Files\WindowsApps 2017-09-15 00:53 - 2016-07-16 13:47 - 000000000 ____D C:\WINDOWS\AppReadiness 2017-09-15 00:51 - 2017-02-01 16:12 - 000002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-09-15 00:51 - 2016-05-11 03:17 - 000000000 ____D C:\Users\Milutinac\AppData\Roaming\uTorrent 2017-09-15 00:46 - 2016-08-24 07:43 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2017-09-13 08:36 - 2016-08-24 08:00 - 000003808 _____ C:\WINDOWS\System32\Tasks\AutoKMS 2017-09-13 08:35 - 2016-08-24 08:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2017-09-13 08:35 - 2016-08-24 07:46 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2017-09-13 08:35 - 2016-05-11 03:13 - 000000000 __SHD C:\Users\Milutinac\IntelGraphicsProfiles 2017-09-12 22:14 - 2017-01-12 22:01 - 000000000 ____D C:\Users\Milutinac\AppData\Local\Overwolf 2017-09-10 11:19 - 2016-08-24 07:50 - 000000000 ____D C:\Users\Milutinac 2017-09-09 22:45 - 2016-05-11 04:23 - 004974126 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2017-09-09 22:40 - 2016-07-16 13:45 - 000000000 ____D C:\WINDOWS\INF 2017-09-09 22:40 - 2016-05-11 22:48 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2017-09-09 22:37 - 2016-07-16 08:04 - 001310720 _____ C:\WINDOWS\system32\config\BBI 2017-09-09 11:10 - 2017-07-31 15:38 - 000003384 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-131887269-2774481433-2147826050-1001 2017-09-09 11:10 - 2016-05-11 04:23 - 000002420 _____ C:\Users\Milutinac\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2017-09-09 11:10 - 2016-05-11 04:23 - 000000000 ___RD C:\Users\Milutinac\OneDrive 2017-09-03 19:17 - 2016-07-16 13:47 - 000000000 ____D C:\WINDOWS\system32\NDF 2017-08-28 18:18 - 2016-09-21 18:29 - 000000000 ____D C:\Users\Milutinac\AppData\Local\ElevatedDiagnostics 2017-08-28 15:08 - 2016-05-13 20:05 - 000000000 ____D C:\Users\Milutinac\AppData\Roaming\BSplayer PRO 2017-08-23 19:21 - 2016-06-16 01:27 - 000000000 ____D C:\Users\Milutinac\AppData\Local\Mixxx 2017-08-20 20:23 - 2016-10-26 17:40 - 000000000 ____D C:\WINDOWS\Minidump 2017-08-20 15:48 - 2016-05-15 18:49 - 000000000 ____D C:\Users\Milutinac\Desktop\muzika 2017-08-20 11:45 - 2016-05-13 20:39 - 000544424 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2017-08-19 14:10 - 2016-11-07 14:18 - 000000925 _____ C:\Users\Milutinac\Desktop\q.lnk 2017-08-17 15:44 - 2017-03-19 12:59 - 000000000 ____D C:\Users\Milutinac\Downloads\New folder ==================== Files in the root of some directories ======= 2016-10-29 22:57 - 2016-10-29 23:13 - 000003584 _____ () C:\Users\Milutinac\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2016-05-11 10:22 - 2016-05-11 12:20 - 000000600 _____ () C:\Users\Milutinac\AppData\Local\PUTTY.RND 2016-12-11 12:30 - 2016-11-23 15:37 - 000000570 _____ () C:\Users\Milutinac\AppData\Local\TroubleshooterConfig.json ==================== Bamital & volsnap ====================== (There is no automatic fix for files that do not pass verification.) C:\WINDOWS\system32\winlogon.exe => File is digitally signed C:\WINDOWS\system32\wininit.exe => File is digitally signed C:\WINDOWS\explorer.exe => File is digitally signed C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed C:\WINDOWS\system32\svchost.exe => File is digitally signed C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed C:\WINDOWS\system32\services.exe => File is digitally signed C:\WINDOWS\system32\User32.dll => File is digitally signed C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed C:\WINDOWS\system32\userinit.exe => File is digitally signed C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed C:\WINDOWS\system32\rpcss.dll => File is digitally signed C:\WINDOWS\system32\dnsapi.dll => File is digitally signed C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2017-09-10 11:37 ==================== End of FRST.txt ============================ https://www.mycity.rs/must-login.png Unaprijed Hvala

Profil

softwaremaniac Poslao: 15 Sep 2017 22:34 Idi na vrh
offline softwaremaniac AMF pripravnik Pridružio: 14 Jun 2016 Poruke: 535	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! 1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod: `CreateRestorePoint: HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION GroupPolicy: Restriction <==== ATTENTION ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File Task: {0B8D4724-0C07-4045-A875-5BB16192AC83} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION EmptyTemp:` 2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi. 3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj. Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema. Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku. Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a.

Profil

TheSpringEagle Poslao: 16 Sep 2017 12:49 Idi na vrh
offline TheSpringEagle AMF student Anunnaki Pridružio: 20 Apr 2012 Poruke: 1645	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Fix result of Farbar Recovery Scan Tool (x64) Version: 16-09-2017 Ran by Milutinac (16-09-2017 13:37:37) Run:1 Running from C:\Users\Milutinac\Desktop Loaded Profiles: Milutinac (Available Profiles: Milutinac) Boot Mode: Normal ============================================== fixlist content: *************** CreateRestorePoint: HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION GroupPolicy: Restriction <==== ATTENTION ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File Task: {0B8D4724-0C07-4045-A875-5BB16192AC83} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION EmptyTemp: *************** Restore point was successfully created. HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => key removed successfully C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => key removed successfully HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => key not found. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0B8D4724-0C07-4045-A875-5BB16192AC83} => key removed successfully HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0B8D4724-0C07-4045-A875-5BB16192AC83} => key removed successfully HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OfficeSoftwareProtectionPlatform\SvcRestartTask => key removed successfully =========== EmptyTemp: ========== BITS transfer queue => 0 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 138496126 B Java, Flash, Steam htmlcache => 506 B Windows/system/drivers => 4571376 B Edge => 190967 B Chrome => 578779718 B Firefox => 2346953 B Opera => 0 B Temp, IE cache, history, cookies, recent: Default => 0 B Users => 0 B ProgramData => 0 B Public => 0 B systemprofile => 52992 B systemprofile32 => 128 B LocalService => 0 B NetworkService => 98000 B Milutinac => 207269448 B RecycleBin => 0 B EmptyTemp: => 888.6 MB temporary data Removed. ================================ The system needed a reboot. ==== End of Fixlog 13:39:35 ====

Profil

softwaremaniac Poslao: 16 Sep 2017 13:32 Idi na vrh
offline softwaremaniac AMF pripravnik Pridružio: 14 Jun 2016 Poruke: 535	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Preuzmi AdwCleaner i sačuvaj ga na Desktop Dvoklikom pokreni program. U EULA prozoru klikni na I agree. U Tools odaberi Options. U dijaloškom okviru koji se pojavi isključi Reset Winsock settings ako je uključen. Klikni na dugme Scan i sačekaj da se završi skeniranje. Ako ti javi da postoji novija verzija, postaraj se da je preuzmeš. Klikni na dugme Clean i pričekaj da program završi. Program će zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni OK kao potvrdu. Pojavit će se poruka da računar treba restartovati. Klikni OK Računar će se restartovati, a potom otvoriti Notepad (C:\Adwcleaner\AdwCleaner[C0].txt) sa izvještajem. Sačuvaj taj izvještaj na Desktop i okači ga uz poruku koristeći opciju "Prikači fajl"

Profil

TheSpringEagle Poslao: 16 Sep 2017 14:43 Idi na vrh
offline TheSpringEagle AMF student Anunnaki Pridružio: 20 Apr 2012 Poruke: 1645	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: https://www.mycity.rs/must-login.png

Profil

softwaremaniac Poslao: 17 Sep 2017 19:26 Idi na vrh
offline softwaremaniac AMF pripravnik Pridružio: 14 Jun 2016 Poruke: 535	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! • Sledeća procedura će implementirati završno čišćenje. Preuzmi "Xplode"-ov DelFix alat i snimi ga na Desktop. Dvoklikom pokreni alat i štikliraj kućice ispred sledećih opcija; Remove disinfection tools Create registry backup Purge System Restore Klikni na dugme Run i pričekaj trenutak dok alat ne završi svoj rad. Od ovog trenutka, svi korišćeni alati u ovoj temi bi trebali biti obrisani. Ukoliko neki alat ili izveštaj nije uklonjen, slobodno ih obriši ručno. Alat će takođe formirati izveštaj za tebe. (C:\DelFix.txt) - Alat će snimiti i zdravo stanje registy-ja i napraviti backup koristeci integrisan program "ERUNT" u %windir%\ERUNT\DelFix - DelFix briše stare system restore tačke i pravi novu, svežu tačku nakon čišćenja.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Provjera

Ko je trenutno na forumu

Ukupno su 656 korisnika na forumu :: 12 registrovanih, 6 sakrivenih i 638 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: bbogdan, DragoslavS, gasha, kolle.the.kid, ladro, Milos82, S2M, SR-3m, suton, yufighter, zeo, zlaya011

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by