MyCity » Ambulanta -> Arhiva Ambulante » Racunar koci, sporo se pokrece i gasi, potrebna provera

Racunar koci, sporo se pokrece i gasi, potrebna provera

Napisano na dan: 28.11.2015

Strana:
1
2

Racunar koci, sporo se pokrece i gasi, potrebna provera

Sledeća strana

Pagination

Odgovori

Strana:
1
2

Doctor NO Poslao: 28 Nov 2015 10:58 Idi na vrh
offline Doctor NO Građanin Pridružio: 01 Nov 2011 Poruke: 89	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Pozdrav. Racunar se veoma dugo pokrece pri paljenju, prilikom restarta to traje jako dugo. U radu je onako dosta spor ali posle npr 3h rada uspori bas dosta, cujem hard disk da radi gotovo stalno. Moze li neka pomoc ili da reinstaliram sistem sto mi je malo veca procedura zbog nekih programa koje imam... Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:27-11-2015 Ran by Bojan (administrator) on BOJAN-PC (28-11-2015 10:55:05) Running from C:\Users\Bojan\Desktop Loaded Profiles: Bojan (Available Profiles: Bojan & Guest) Platform: Windows 7 Professional Service Pack 1 (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (AMD) C:\Windows\System32\atiesrxx.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AMD) C:\Windows\System32\atieclxx.exe (VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Microsoft Corporation) C:\Windows\System32\alg.exe () C:\Program Files (x86)\MCShield\MCShieldRTM.exe () C:\Program Files (x86)\MCShield\MCShieldTray.exe () C:\Users\Bojan\AppData\Local\Viber\Viber.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe () C:\Program Files (x86)\MCShield\MCShieldUPD.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7004376 2015-11-27] (AVAST Software) HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5199984 2011-06-24] (VIA) HKU\S-1-5-21-3064223852-3230311793-3039582061-1000\...\Run: [MCShield] => C:\Program Files (x86)\MCShield\MCShieldRTM.exe [262144 2011-03-26] () HKU\S-1-5-21-3064223852-3230311793-3039582061-1000\...\Run: [MCShieldTray] => C:\Program Files (x86)\MCShield\MCShieldTray.exe [73728 2010-11-04] () HKU\S-1-5-21-3064223852-3230311793-3039582061-1000\...\Run: [Viber] => C:\Users\Bojan\AppData\Local\Viber\Viber.exe [51657424 2015-11-09] () HKU\S-1-5-21-3064223852-3230311793-3039582061-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [57981568 2015-09-28] (Skype Technologies S.A.) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-04-16] () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-04-16] () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-04-16] () ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-11-27] (AVAST Software) Startup: C:\Users\Bojan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar290.lnk [2015-11-28] ShortcutTarget: Sidebar290.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) Startup: C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar690.lnk [2015-07-07] ShortcutTarget: Sidebar690.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{074497CD-F1C1-4B60-BAEA-EEBD4C6F2607}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{28CCB148-D1A3-4D8D-BC46-B3C82F692215}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{71C526BC-4605-4FB4-A793-B3FA2171E292}: [DhcpNameServer] 192.168.0.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-18] (Microsoft Corp.) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-12-18] (Oracle Corporation) BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-12-18] (Oracle Corporation) StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF ProfilePath: C:\Users\Bojan\AppData\Roaming\Mozilla\Firefox\Profiles\8jexh18k.default FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-14] () FF Plugin: @microsoft.com/GENUINE -> disabled [No File] FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-04-20] (Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-14] () FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-12-18] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-12-18] (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File] FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2014-07-02] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2014-07-02] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-04-20] (Adobe Systems) FF user.js: detected! => C:\Users\Bojan\AppData\Roaming\Mozilla\Firefox\Profiles\8jexh18k.default\user.js [2015-03-18] FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\pogodakyu.xml [2015-04-04] FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\vokabular.xml [2015-04-04] Chrome: ======= CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Bojan\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.823\_platform_specific\win_x86\widevinecdmadapter.dll => No File CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\PepperFlash\pepflashplayer.dll () CHR Profile: C:\Users\Bojan\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Slides) - C:\Users\Bojan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-18] CHR Extension: (Google Docs) - C:\Users\Bojan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-18] CHR Extension: (Google Drive) - C:\Users\Bojan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22] CHR Extension: (YouTube) - C:\Users\Bojan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25] CHR Extension: (Google Search) - C:\Users\Bojan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28] CHR Extension: (Google Sheets) - C:\Users\Bojan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-18] CHR Extension: (Google Docs Offline) - C:\Users\Bojan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-18] CHR Extension: (AdBlock) - C:\Users\Bojan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-11-24] CHR Extension: (Calculator) - C:\Users\Bojan\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdkgihpbaofhkiliohfepioflkkbapao [2015-03-19] CHR Extension: (Numerics Calculator & Converter) - C:\Users\Bojan\AppData\Local\Google\Chrome\User Data\Default\Extensions\liglcienpnkhdajdfmnpbgmpjglonipe [2015-03-19] CHR Extension: (EXIF Viewer) - C:\Users\Bojan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nafpfdcmppffipmhcpkbplhkoiekndck [2015-11-23] CHR Extension: (EXIF Reader) - C:\Users\Bojan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nchnjcdahncnilbicljpnbfobpnljnki [2015-03-18] CHR Extension: (Chrome Web Store Payments) - C:\Users\Bojan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-28] CHR Extension: (Gmail) - C:\Users\Bojan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29] Opera: ======= OPR Extension: (FastestTube) - C:\Users\Bojan\AppData\Roaming\Opera Software\Opera Stable\Extensions\phahnhbgfdhgobenebnjbgmacgpbfaag [2015-09-23] ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [174416 2015-11-27] (AVAST Software) R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-06-14] (VIA Technologies, Inc.) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) ===================== Drivers (Whitelisted) ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-11-27] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-11-27] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-11-27] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-11-27] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-27] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-27] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [154256 2015-11-27] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-11-27] (AVAST Software) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2015-04-19] (Disc Soft Ltd) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr)) S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2013-02-12] (Microsoft Corporation) R1 {6ed44528-f859-4ac0-b14f-f62a9503489b}Gw64; C:\Windows\System32\drivers\{6ed44528-f859-4ac0-b14f-f62a9503489b}Gw64.sys [48776 2015-03-18] (StdLib) S3 MSICDSetup; \??\F:\CDriver64.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-11-28 10:55 - 2015-11-28 10:56 - 00013608 _____ C:\Users\Bojan\Desktop\FRST.txt 2015-11-28 10:54 - 2015-11-28 10:55 - 00000000 ____D C:\FRST 2015-11-28 10:54 - 2015-11-28 10:54 - 02349056 _____ (Farbar) C:\Users\Bojan\Desktop\FRST64.exe 2015-11-27 19:11 - 2015-11-27 19:11 - 00386096 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2015-11-27 19:11 - 2015-11-27 19:11 - 00043112 _____ (AVAST Software) C:\Windows\avastSS.scr 2015-11-25 20:51 - 2015-11-25 20:51 - 00003416 ____N C:\bootsqm.dat 2015-11-25 16:23 - 2015-11-25 16:17 - 01053043 _____ C:\Users\Bojan\Desktop\replay_last_battle.wotreplay 2015-11-22 17:55 - 2015-11-22 18:00 - 00000000 ____D C:\Users\Bojan\Desktop\Ana@Vanja 2015-11-20 18:15 - 2015-11-20 19:15 - 00000000 ____D C:\Users\Bojan\Desktop\Slikkice 2015-11-20 09:54 - 2015-11-20 10:09 - 00000148 _____ C:\Users\Bojan\Desktop\New Text Document.txt 2015-11-19 20:50 - 2015-11-19 21:34 - 00000771 _____ C:\Users\Guest\Desktop\World of Tanks 0.9.12 ProMod.lnk 2015-11-19 20:50 - 2015-11-19 21:34 - 00000771 _____ C:\Users\Bojan\Desktop\World of Tanks 0.9.12 ProMod.lnk 2015-11-19 20:40 - 2015-11-19 21:24 - 00155136 _____ C:\Windows\SysWOW64\unrar.dll 2015-11-19 20:40 - 2015-11-19 21:24 - 00034308 _____ C:\Windows\SysWOW64\bassmod.dll 2015-11-19 20:40 - 2015-11-19 20:40 - 00136008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msinet.ocx 2015-11-19 20:39 - 2015-11-19 20:39 - 01931296 _____ (Codejock Software) C:\Windows\Codejock.Controls.v15.3.1.ocx 2015-11-19 20:39 - 2015-11-19 20:39 - 01931296 _____ (Codejock Software) C:\Windows\CODEJO~2.OCX 2015-11-19 20:39 - 2015-11-19 20:39 - 00136008 _____ (Microsoft Corporation) C:\Windows\msinet.ocx 2015-11-19 20:38 - 2015-11-19 21:34 - 00000000 ____D C:\Users\Bojan\Desktop\Promod 2015-11-19 15:43 - 2015-11-19 15:48 - 84269326 _____ (Aslain ) C:\Users\Bojan\Desktop\Aslains_XVM_WoT_Modpack_Installer_v.9.12.1.exe 2015-11-18 18:06 - 2015-11-18 18:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wot Numbers 2015-11-16 20:26 - 2015-11-16 20:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro 2015-11-16 20:26 - 2015-11-16 20:26 - 00000000 ____D C:\Program Files\VS Revo Group 2015-11-16 20:26 - 2009-12-30 11:21 - 00031800 _____ (VS Revo Group) C:\Windows\system32\Drivers\revoflt.sys 2015-11-12 14:21 - 2015-11-14 12:25 - 00000971 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk 2015-11-12 07:04 - 2015-10-20 02:12 - 05570496 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2015-11-12 07:04 - 2015-10-20 02:12 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2015-11-12 07:04 - 2015-10-20 02:09 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2015-11-12 07:04 - 2015-10-20 02:06 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2015-11-12 07:04 - 2015-10-20 02:06 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2015-11-12 07:04 - 2015-10-20 02:05 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2015-11-12 07:04 - 2015-10-20 02:05 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2015-11-12 07:04 - 2015-10-20 02:05 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2015-11-12 07:04 - 2015-10-20 02:05 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-11-12 07:04 - 2015-10-20 02:05 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2015-11-12 07:04 - 2015-10-20 02:05 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2015-11-12 07:04 - 2015-10-20 02:05 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-11-12 07:04 - 2015-10-20 02:05 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2015-11-12 07:04 - 2015-10-20 01:53 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2015-11-12 07:04 - 2015-10-20 01:52 - 03991488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2015-11-12 07:04 - 2015-10-20 01:52 - 03935680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2015-11-12 07:04 - 2015-10-20 01:48 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2015-11-12 07:04 - 2015-10-20 01:45 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2015-11-12 07:04 - 2015-10-20 01:45 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2015-11-12 07:04 - 2015-10-20 01:45 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2015-11-12 07:04 - 2015-10-20 01:45 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2015-11-12 07:04 - 2015-10-20 01:44 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2015-11-12 07:04 - 2015-10-20 01:35 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2015-11-12 07:04 - 2015-10-20 00:40 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2015-11-12 07:04 - 2015-09-23 14:15 - 00460776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2015-11-12 07:03 - 2015-11-03 23:10 - 00390344 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-11-12 07:03 - 2015-11-03 22:51 - 00342728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2015-11-12 07:03 - 2015-10-31 00:46 - 25818624 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-11-12 07:03 - 2015-10-31 00:40 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-11-12 07:03 - 2015-10-31 00:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2015-11-12 07:03 - 2015-10-31 00:25 - 02886656 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-11-12 07:03 - 2015-10-31 00:25 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-11-12 07:03 - 2015-10-31 00:25 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-11-12 07:03 - 2015-10-31 00:25 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2015-11-12 07:03 - 2015-10-31 00:24 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-11-12 07:03 - 2015-10-31 00:24 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2015-11-12 07:03 - 2015-10-31 00:17 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-11-12 07:03 - 2015-10-31 00:16 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-11-12 07:03 - 2015-10-31 00:13 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-11-12 07:03 - 2015-10-31 00:12 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-11-12 07:03 - 2015-10-31 00:12 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2015-11-12 07:03 - 2015-10-31 00:11 - 05990912 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-11-12 07:03 - 2015-10-31 00:11 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2015-11-12 07:03 - 2015-10-31 00:11 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2015-11-12 07:03 - 2015-10-31 00:04 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2015-11-12 07:03 - 2015-10-31 00:01 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-11-12 07:03 - 2015-10-30 23:58 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2015-11-12 07:03 - 2015-10-30 23:53 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2015-11-12 07:03 - 2015-10-30 23:52 - 20331520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2015-11-12 07:03 - 2015-10-30 23:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-11-12 07:03 - 2015-10-30 23:49 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-11-12 07:03 - 2015-10-30 23:47 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2015-11-12 07:03 - 2015-10-30 23:46 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-11-12 07:03 - 2015-10-30 23:46 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2015-11-12 07:03 - 2015-10-30 23:45 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2015-11-12 07:03 - 2015-10-30 23:45 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2015-11-12 07:03 - 2015-10-30 23:44 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2015-11-12 07:03 - 2015-10-30 23:44 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2015-11-12 07:03 - 2015-10-30 23:42 - 02279936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2015-11-12 07:03 - 2015-10-30 23:39 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2015-11-12 07:03 - 2015-10-30 23:39 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2015-11-12 07:03 - 2015-10-30 23:37 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2015-11-12 07:03 - 2015-10-30 23:36 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2015-11-12 07:03 - 2015-10-30 23:36 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2015-11-12 07:03 - 2015-10-30 23:36 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2015-11-12 07:03 - 2015-10-30 23:34 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2015-11-12 07:03 - 2015-10-30 23:32 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-11-12 07:03 - 2015-10-30 23:31 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-11-12 07:03 - 2015-10-30 23:29 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-11-12 07:03 - 2015-10-30 23:29 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2015-11-12 07:03 - 2015-10-30 23:28 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2015-11-12 07:03 - 2015-10-30 23:23 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2015-11-12 07:03 - 2015-10-30 23:22 - 14457856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-11-12 07:03 - 2015-10-30 23:21 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2015-11-12 07:03 - 2015-10-30 23:19 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2015-11-12 07:03 - 2015-10-30 23:18 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2015-11-12 07:03 - 2015-10-30 23:17 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-11-12 07:03 - 2015-10-30 23:17 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2015-11-12 07:03 - 2015-10-30 23:16 - 04527616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2015-11-12 07:03 - 2015-10-30 23:11 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2015-11-12 07:03 - 2015-10-30 23:10 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2015-11-12 07:03 - 2015-10-30 23:09 - 12854272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2015-11-12 07:03 - 2015-10-30 23:09 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2015-11-12 07:03 - 2015-10-30 23:09 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2015-11-12 07:03 - 2015-10-30 23:04 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-11-12 07:03 - 2015-10-30 22:53 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2015-11-12 07:03 - 2015-10-30 22:51 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2015-11-12 07:03 - 2015-10-30 22:48 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2015-11-12 07:03 - 2015-10-30 22:46 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2015-11-12 07:03 - 2015-10-20 02:12 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2015-11-12 07:03 - 2015-10-20 02:06 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2015-11-12 07:03 - 2015-10-20 02:06 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2015-11-12 07:03 - 2015-10-20 02:05 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2015-11-12 07:03 - 2015-10-20 02:05 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2015-11-12 07:03 - 2015-10-20 02:05 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2015-11-12 07:03 - 2015-10-20 02:05 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2015-11-12 07:03 - 2015-10-20 02:05 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2015-11-12 07:03 - 2015-10-20 02:05 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2015-11-12 07:03 - 2015-10-20 02:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2015-11-12 07:03 - 2015-10-20 02:05 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2015-11-12 07:03 - 2015-10-20 02:05 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2015-11-12 07:03 - 2015-10-20 02:05 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2015-11-12 07:03 - 2015-10-20 02:05 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2015-11-12 07:03 - 2015-10-20 02:05 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2015-11-12 07:03 - 2015-10-20 02:05 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2015-11-12 07:03 - 2015-10-20 02:04 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2015-11-12 07:03 - 2015-10-20 02:04 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2015-11-12 07:03 - 2015-10-20 02:04 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2015-11-12 07:03 - 2015-10-20 02:00 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2015-11-12 07:03 - 2015-10-20 01:59 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:45 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2015-11-12 07:03 - 2015-10-20 01:45 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2015-11-12 07:03 - 2015-10-20 01:45 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2015-11-12 07:03 - 2015-10-20 01:45 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2015-11-12 07:03 - 2015-10-20 01:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2015-11-12 07:03 - 2015-10-20 01:45 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2015-11-12 07:03 - 2015-10-20 01:45 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2015-11-12 07:03 - 2015-10-20 01:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2015-11-12 07:03 - 2015-10-20 01:44 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2015-11-12 07:03 - 2015-10-20 01:44 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2015-11-12 07:03 - 2015-10-20 01:44 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2015-11-12 07:03 - 2015-10-20 01:44 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2015-11-12 07:03 - 2015-10-20 01:44 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2015-11-12 07:03 - 2015-10-20 01:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2015-11-12 07:03 - 2015-10-20 01:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2015-11-12 07:03 - 2015-10-20 01:35 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2015-11-12 07:03 - 2015-10-20 01:35 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:35 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 00:41 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2015-11-12 07:03 - 2015-10-20 00:40 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2015-11-12 07:03 - 2015-10-20 00:29 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2015-11-12 07:03 - 2015-10-20 00:29 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2015-11-12 07:03 - 2015-10-20 00:27 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 00:27 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 00:27 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2015-11-12 07:03 - 2015-10-20 00:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2015-11-12 07:03 - 2015-09-23 14:15 - 00299632 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll 2015-11-12 07:03 - 2015-09-23 14:09 - 00251000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll 2015-11-12 07:02 - 2015-10-13 17:41 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2015-11-12 07:02 - 2015-10-13 17:40 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys 2015-11-12 07:02 - 2015-10-01 19:06 - 00692672 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2015-11-12 07:02 - 2015-10-01 19:04 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2015-11-12 07:02 - 2015-10-01 19:00 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe 2015-11-12 07:02 - 2015-10-01 19:00 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll 2015-11-12 07:02 - 2015-10-01 19:00 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll 2015-11-12 07:02 - 2015-10-01 19:00 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll 2015-11-12 07:02 - 2015-10-01 19:00 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe 2015-11-12 07:02 - 2015-10-01 18:50 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll 2015-11-12 07:02 - 2015-10-01 18:00 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2015-11-12 07:01 - 2015-08-06 19:04 - 14176768 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2015-11-12 07:01 - 2015-08-06 19:03 - 01866752 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2015-11-12 07:01 - 2015-08-06 18:44 - 12875776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2015-11-12 07:01 - 2015-08-06 18:44 - 01498624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll 2015-11-12 07:00 - 2015-11-03 18:55 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-11-12 07:00 - 2015-10-20 19:42 - 03168768 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2015-11-12 07:00 - 2015-10-20 19:42 - 02608128 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2015-11-12 07:00 - 2015-10-20 19:42 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2015-11-12 07:00 - 2015-10-20 19:42 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2015-11-12 07:00 - 2015-10-20 19:42 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2015-11-12 07:00 - 2015-10-20 19:42 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2015-11-12 07:00 - 2015-10-20 19:42 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2015-11-12 07:00 - 2015-10-20 19:41 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2015-11-12 07:00 - 2015-10-20 19:41 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2015-11-12 07:00 - 2015-10-20 19:41 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2015-11-12 07:00 - 2015-10-20 19:41 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll 2015-11-12 07:00 - 2015-10-20 18:46 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2015-11-12 07:00 - 2015-10-20 18:46 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2015-11-12 07:00 - 2015-10-20 18:46 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2015-11-12 07:00 - 2015-10-20 18:46 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2015-11-12 07:00 - 2015-10-20 18:45 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2015-11-12 06:58 - 2015-10-01 19:00 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll 2015-11-12 06:58 - 2015-10-01 19:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll 2015-11-12 06:58 - 2015-10-01 18:50 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll 2015-11-12 06:52 - 2015-10-13 05:57 - 00950720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys 2015-11-12 06:17 - 2015-11-12 06:18 - 00000000 ____D C:\Users\Bojan\AppData\Local\Viber 2015-11-11 14:10 - 2015-11-11 14:10 - 00290304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\subinacl.exe 2015-11-11 14:10 - 2015-11-11 14:10 - 00000000 ____D C:\Program Files (x86)\Adware Removal Tool by TSA 2015-11-08 20:10 - 2015-11-08 20:13 - 00000000 ____D C:\Users\Bojan\Desktop\New folder (20) 2015-11-07 23:11 - 2015-11-19 20:04 - 00000000 ____D C:\Users\Bojan\AppData\Roaming\Wot Numbers 2015-11-07 23:11 - 2015-11-07 23:11 - 00001411 _____ C:\Users\Bojan\Desktop\WotNumbers - Shortcut.lnk 2015-11-07 23:10 - 2015-11-18 18:06 - 00000000 ____D C:\Program Files (x86)\Wot Numbers 2015-11-07 16:22 - 2015-11-07 16:32 - 00000000 ____D C:\Users\Bojan\Desktop\New folder (28) 2015-11-07 13:04 - 2015-11-07 22:06 - 00000000 ____D C:\Users\Bojan\Desktop\New folder (27) 2015-11-06 20:48 - 2015-11-22 17:57 - 00000000 ____D C:\Users\Bojan\Desktop\New folder (26) 2015-11-02 12:21 - 2015-11-02 12:21 - 00000560 _____ C:\Users\Public\Desktop\World of Tanks - Common Test.lnk 2015-11-02 12:21 - 2015-11-02 12:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Tanks - Common Test ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-11-28 10:54 - 2009-07-14 05:45 - 00020656 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-11-28 10:54 - 2009-07-14 05:45 - 00020656 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-11-28 10:54 - 2009-07-14 04:20 - 00000000 ____D C:\Windows 2015-11-28 10:30 - 2015-02-05 11:01 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-11-28 10:30 - 2014-12-18 02:36 - 00000000 ____D C:\Users\Bojan\AppData\Roaming\Skype 2015-11-28 09:47 - 2014-12-18 02:49 - 00000000 ____D C:\Users\Bojan\AppData\Roaming\MCShield 2015-11-28 09:22 - 2014-12-25 12:51 - 00000000 ____D C:\Users\Bojan\AppData\Roaming\ViberPC 2015-11-28 09:20 - 2015-02-05 11:01 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-11-28 09:19 - 2014-12-18 01:42 - 00000000 ____D C:\ProgramData\NVIDIA 2015-11-28 09:19 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-11-27 23:36 - 2015-08-16 21:15 - 00000000 ____D C:\Users\Bojan\AppData\Roaming\TS3Client 2015-11-27 19:11 - 2015-03-19 15:15 - 00154256 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2015-11-27 19:11 - 2015-03-19 15:15 - 00028656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys 2015-11-27 19:11 - 2015-03-19 15:13 - 00273784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2015-11-27 19:11 - 2015-03-19 15:13 - 00065224 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2015-11-27 19:11 - 2014-12-18 04:55 - 00449992 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2015-11-27 19:11 - 2014-12-18 04:54 - 01059656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2015-11-27 19:11 - 2014-12-18 04:54 - 00097648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2015-11-27 19:11 - 2014-12-18 04:54 - 00093528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2015-11-27 19:11 - 2014-12-18 04:54 - 00003924 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2015-11-26 17:03 - 2009-07-14 06:08 - 00032574 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2015-11-25 19:30 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf 2015-11-24 15:16 - 2014-12-18 01:49 - 00000000 ____D C:\Program Files (x86)\Google 2015-11-20 19:15 - 2014-12-19 06:48 - 00000000 ____D C:\Users\Bojan\AppData\Roaming\VSO 2015-11-20 08:20 - 2015-01-26 18:09 - 00000000 ____D C:\Program Files (x86)\Hard Disk Sentinel Pro 2015-11-20 08:11 - 2014-12-31 17:43 - 00000000 ____D C:\Users\Bojan\AppData\Local\ElevatedDiagnostics 2015-11-20 08:01 - 2009-07-14 05:45 - 04942696 _____ C:\Windows\system32\FNTCACHE.DAT 2015-11-20 01:02 - 2014-12-18 01:46 - 00060608 _____ C:\Users\Bojan\AppData\Local\GDIPFONTCACHEV1.DAT 2015-11-19 17:52 - 2015-08-21 20:26 - 00000139 _____ C:\Users\Bojan\Desktop\New Text Document (2).txt 2015-11-19 15:23 - 2015-01-27 13:35 - 00003830 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1418949982 2015-11-19 15:23 - 2014-12-19 01:45 - 00000000 ____D C:\Program Files (x86)\Opera 2015-11-16 20:31 - 2015-02-14 20:57 - 00000000 ___RD C:\Users\Bojan\Desktop\Programi 2015-11-12 21:37 - 2009-07-14 06:13 - 00782470 _____ C:\Windows\system32\PerfStringBackup.INI 2015-11-12 14:21 - 2015-08-16 21:14 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client 2015-11-12 10:15 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache 2015-11-12 07:28 - 2014-12-18 02:35 - 00000000 ____D C:\Windows\system32\MRT 2015-11-12 07:08 - 2014-12-18 04:43 - 00774592 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2015-11-12 07:06 - 2010-11-21 08:17 - 00000000 ____D C:\Program Files\Windows Journal 2015-11-06 18:26 - 2014-12-25 12:54 - 00000000 ____D C:\Users\Bojan\Documents\ViberDownloads 2015-11-02 12:20 - 2015-05-01 21:22 - 00000000 ____D C:\Games 2015-10-30 17:43 - 2014-12-26 02:44 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task ==================== Files in the root of some directories ======= 2015-03-07 10:19 - 2015-03-07 10:19 - 0000126 _____ () C:\Users\Bojan\AppData\Roaming\Network Monitor II_#0_Traffic.ini 2014-12-28 14:43 - 2014-12-28 14:44 - 0001456 _____ () C:\Users\Bojan\AppData\Local\Adobe Save for Web 13.0 Prefs 2014-12-22 14:55 - 2014-12-22 14:55 - 0007605 _____ () C:\Users\Bojan\AppData\Local\Resmon.ResmonCfg 2015-09-01 22:22 - 2015-09-01 22:22 - 0000000 _____ () C:\Users\Bojan\AppData\Local\{33EE717F-2A60-40B0-AAB1-12B02E7EBC1A} Files to move or delete: ==================== C:\Users\Bojan\a3dapi.dll C:\Users\Bojan\Core.dll C:\Users\Bojan\Counter-Strike WaRzOnE.bat C:\Users\Bojan\crashhandler.dll C:\Users\Bojan\dbg.dll C:\Users\Bojan\DemoPlayer.dll C:\Users\Bojan\FileSystem_Stdio.dll C:\Users\Bojan\FileSystem_Steam.dll C:\Users\Bojan\Half-Life WaRzOnE.bat C:\Users\Bojan\hl.exe C:\Users\Bojan\hlds.exe C:\Users\Bojan\hltv.exe C:\Users\Bojan\hw.dll C:\Users\Bojan\hwpatcher.dll C:\Users\Bojan\Mss32.dll C:\Users\Bojan\msvcr100.dll C:\Users\Bojan\proxy.dll C:\Users\Bojan\revSrvBrowser.dll C:\Users\Bojan\Steam.dll C:\Users\Bojan\steamclient.dll C:\Users\Bojan\steamclient_orig.dll C:\Users\Bojan\steam_api.dll C:\Users\Bojan\steam_api_c.dll C:\Users\Bojan\Steam_orig.dll C:\Users\Bojan\sw.dll C:\Users\Bojan\swds.dll C:\Users\Bojan\tier0.dll C:\Users\Bojan\tier0_s.dll C:\Users\Bojan\upatch.dll C:\Users\Bojan\vgui.dll C:\Users\Bojan\vgui2.dll C:\Users\Bojan\voice_miles.dll C:\Users\Bojan\voice_speex.dll C:\Users\Bojan\vstdlib.dll C:\Users\Bojan\vstdlib_s.dll ==================== Bamital & volsnap ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll [2010-11-21 04:24] - [2014-12-18 01:14] - 1008640 ____A (Microsoft Corporation) 2C353B6CE0C8D03225CAA2AF33B68D79 C:\Windows\SysWOW64\User32.dll [2010-11-21 04:24] - [2014-12-18 01:14] - 0833024 ____A (Microsoft Corporation) 861C4346F9281DC0380DE72C8D55D6BE C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-11-20 17:06 ==================== End of FRST.txt ============================ mycity.rs/must-login.png

Profil

Sass Drake Poslao: 28 Nov 2015 18:41 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Korak 1 Otvori Notepad i iskopiraj sljedeći tekst koji se nalazi unutar Kod polja. R1 {6ed44528-f859-4ac0-b14f-f62a9503489b}Gw64; C:\Windows\System32\drivers\{6ed44528-f859-4ac0-b14f-f62a9503489b}Gw64.sys [48776 2015-03-18] (StdLib) FF user.js: detected! => C:\Users\Bojan\AppData\Roaming\Mozilla\Firefox\Profiles\8jexh18k.default\user.js [2015-03-18] OPR Extension: (FastestTube) - C:\Users\Bojan\AppData\Roaming\Opera Software\Opera Stable\Extensions\phahnhbgfdhgobenebnjbgmacgpbfaag [2015-09-23] C:\Windows\System32\drivers\{6ed44528-f859-4ac0-b14f-f62a9503489b}Gw64.sys C:\Users\Bojan\a3dapi.dll C:\Users\Bojan\Core.dll C:\Users\Bojan\Counter-Strike WaRzOnE.bat C:\Users\Bojan\crashhandler.dll C:\Users\Bojan\dbg.dll C:\Users\Bojan\DemoPlayer.dll C:\Users\Bojan\FileSystem_Stdio.dll C:\Users\Bojan\FileSystem_Steam.dll C:\Users\Bojan\Half-Life WaRzOnE.bat C:\Users\Bojan\hl.exe C:\Users\Bojan\hlds.exe C:\Users\Bojan\hltv.exe C:\Users\Bojan\hw.dll C:\Users\Bojan\hwpatcher.dll C:\Users\Bojan\Mss32.dll C:\Users\Bojan\msvcr100.dll C:\Users\Bojan\proxy.dll C:\Users\Bojan\revSrvBrowser.dll C:\Users\Bojan\Steam.dll C:\Users\Bojan\steamclient.dll C:\Users\Bojan\steamclient_orig.dll C:\Users\Bojan\steam_api.dll C:\Users\Bojan\steam_api_c.dll C:\Users\Bojan\Steam_orig.dll C:\Users\Bojan\sw.dll C:\Users\Bojan\swds.dll C:\Users\Bojan\tier0.dll C:\Users\Bojan\tier0_s.dll C:\Users\Bojan\upatch.dll C:\Users\Bojan\vgui.dll C:\Users\Bojan\vgui2.dll C:\Users\Bojan\voice_miles.dll C:\Users\Bojan\voice_speex.dll C:\Users\Bojan\vstdlib.dll C:\Users\Bojan\vstdlib_s.dll EmptyTemp: U okviru Notepad-a klikni na File --> Save As Fajl nazovi Fixlist i sačuvaj na Desktop Dvoklikom ponovo pokreni FRST.exe Klikni na Fix i sačekaj dok program ne završi. Ukoliko program zatraži restart računara, omogući mu da to nesmetano obavi. Nakon završetka rada, otvoriće se fixlog.txt, sa sadržajem koji treba da kopiraš u temu. Takođe, na Desktop-u će se nalaziti (fixlog.txt). Korak 2 Preuzmi "Xplode"-ov AdwCleaner i sačuvaj ga na Desktop Dvoklikom pokreni program. U EULA prozoru klikni na I agree. Klikni na dugme Scan i sačekaj da se završi skeniranje. Klikni na dugme Cleaning i pričekaj da program završi. Program će zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni OK kao potvrdu. Na sljedeća dva prozora koja se otvore (Informations i Restart required ) klikni OK Računar će se restartovati, a potom otvoriti Notepad (C:\Adwcleaner\AdwCleaner[C1].txt) sa izvještajem. Sačuvaj taj izvještaj na Desktop i okači ga uz poruku koristeći opciju "Prikači fajl"

Profil

Doctor NO Poslao: 28 Nov 2015 19:24 Idi na vrh
offline Doctor NO Građanin Pridružio: 01 Nov 2011 Poruke: 89	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Fix result of Farbar Recovery Scan Tool (x64) Version:27-11-2015 Ran by Bojan (2015-11-28 19:03:10) Run:1 Running from C:\Users\Bojan\Desktop Loaded Profiles: Bojan (Available Profiles: Bojan & Guest) Boot Mode: Normal ============================================== fixlist content: *************** R1 {6ed44528-f859-4ac0-b14f-f62a9503489b}Gw64; C:\Windows\System32\drivers\{6ed44528-f859-4ac0-b14f-f62a9503489b}Gw64.sys [48776 2015-03-18] (StdLib) FF user.js: detected! => C:\Users\Bojan\AppData\Roaming\Mozilla\Firefox\Profiles\8jexh18k.default\user.js [2015-03-18] OPR Extension: (FastestTube) - C:\Users\Bojan\AppData\Roaming\Opera Software\Opera Stable\Extensions\phahnhbgfdhgobenebnjbgmacgpbfaag [2015-09-23] C:\Windows\System32\drivers\{6ed44528-f859-4ac0-b14f-f62a9503489b}Gw64.sys C:\Users\Bojan\a3dapi.dll C:\Users\Bojan\Core.dll C:\Users\Bojan\Counter-Strike WaRzOnE.bat C:\Users\Bojan\crashhandler.dll C:\Users\Bojan\dbg.dll C:\Users\Bojan\DemoPlayer.dll C:\Users\Bojan\FileSystem_Stdio.dll C:\Users\Bojan\FileSystem_Steam.dll C:\Users\Bojan\Half-Life WaRzOnE.bat C:\Users\Bojan\hl.exe C:\Users\Bojan\hlds.exe C:\Users\Bojan\hltv.exe C:\Users\Bojan\hw.dll C:\Users\Bojan\hwpatcher.dll C:\Users\Bojan\Mss32.dll C:\Users\Bojan\msvcr100.dll C:\Users\Bojan\proxy.dll C:\Users\Bojan\revSrvBrowser.dll C:\Users\Bojan\Steam.dll C:\Users\Bojan\steamclient.dll C:\Users\Bojan\steamclient_orig.dll C:\Users\Bojan\steam_api.dll C:\Users\Bojan\steam_api_c.dll C:\Users\Bojan\Steam_orig.dll C:\Users\Bojan\sw.dll C:\Users\Bojan\swds.dll C:\Users\Bojan\tier0.dll C:\Users\Bojan\tier0_s.dll C:\Users\Bojan\upatch.dll C:\Users\Bojan\vgui.dll C:\Users\Bojan\vgui2.dll C:\Users\Bojan\voice_miles.dll C:\Users\Bojan\voice_speex.dll C:\Users\Bojan\vstdlib.dll C:\Users\Bojan\vstdlib_s.dll EmptyTemp: *************** {6ed44528-f859-4ac0-b14f-f62a9503489b}Gw64 => Service stopped successfully. {6ed44528-f859-4ac0-b14f-f62a9503489b}Gw64 => service removed successfully C:\Users\Bojan\AppData\Roaming\Mozilla\Firefox\Profiles\8jexh18k.default\user.js => moved successfully C:\Users\Bojan\AppData\Roaming\Opera Software\Opera Stable\Extensions\phahnhbgfdhgobenebnjbgmacgpbfaag => moved successfully C:\Windows\System32\drivers\{6ed44528-f859-4ac0-b14f-f62a9503489b}Gw64.sys => moved successfully C:\Users\Bojan\a3dapi.dll => moved successfully C:\Users\Bojan\Core.dll => moved successfully C:\Users\Bojan\Counter-Strike WaRzOnE.bat => moved successfully C:\Users\Bojan\crashhandler.dll => moved successfully C:\Users\Bojan\dbg.dll => moved successfully C:\Users\Bojan\DemoPlayer.dll => moved successfully C:\Users\Bojan\FileSystem_Stdio.dll => moved successfully C:\Users\Bojan\FileSystem_Steam.dll => moved successfully C:\Users\Bojan\Half-Life WaRzOnE.bat => moved successfully C:\Users\Bojan\hl.exe => moved successfully C:\Users\Bojan\hlds.exe => moved successfully C:\Users\Bojan\hltv.exe => moved successfully C:\Users\Bojan\hw.dll => moved successfully C:\Users\Bojan\hwpatcher.dll => moved successfully C:\Users\Bojan\Mss32.dll => moved successfully C:\Users\Bojan\msvcr100.dll => moved successfully C:\Users\Bojan\proxy.dll => moved successfully C:\Users\Bojan\revSrvBrowser.dll => moved successfully C:\Users\Bojan\Steam.dll => moved successfully C:\Users\Bojan\steamclient.dll => moved successfully C:\Users\Bojan\steamclient_orig.dll => moved successfully C:\Users\Bojan\steam_api.dll => moved successfully C:\Users\Bojan\steam_api_c.dll => moved successfully C:\Users\Bojan\Steam_orig.dll => moved successfully C:\Users\Bojan\sw.dll => moved successfully C:\Users\Bojan\swds.dll => moved successfully C:\Users\Bojan\tier0.dll => moved successfully C:\Users\Bojan\tier0_s.dll => moved successfully C:\Users\Bojan\upatch.dll => moved successfully C:\Users\Bojan\vgui.dll => moved successfully C:\Users\Bojan\vgui2.dll => moved successfully C:\Users\Bojan\voice_miles.dll => moved successfully C:\Users\Bojan\voice_speex.dll => moved successfully C:\Users\Bojan\vstdlib.dll => moved successfully C:\Users\Bojan\vstdlib_s.dll => moved successfully EmptyTemp: => 666.2 MB temporary data Removed. The system needed a reboot. ==== End of Fixlog 19:03:34 ==== mycity.rs/must-login.png

Profil

Sass Drake Poslao: 28 Nov 2015 19:46 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Kakvo je sada stanje sistema?

Profil

Doctor NO Poslao: 28 Nov 2015 19:55 Idi na vrh
offline Doctor NO Građanin Pridružio: 01 Nov 2011 Poruke: 89	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pa i dalje se jako dugo pali, od pritiska "restart" do trenutka kada se uključi i popali skype, viber, wlm i te programe pri startu mu treba ravno 4min 30sec, a hard disk nastavlja da drlja još jedno minut-minut ipo.

Profil

Sass Drake Poslao: 28 Nov 2015 21:12 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Spakuj u ZIP, RAR ili 7Z arhive sljedeći folder: C:\AdwCleaner i pošalji ih preko sljedećeg linka: http://www.mycity.rs/ambulanta-upload.php Isključi Windows Defender. http://windows.microsoft.com/en-us/windows/turn-windows-defender-on-off Preuzmi Malwarebytes Anti-Rootkit (MBAR) sa sledeceg linka i sacuvaj ga na Desktop. Dvoklikom pokreni MBAR () na ikonicu programa: - Klikni OK na sledecem prozoru da bi dozvolio raspakivanje u zaseban mbar folder na desktop-u; - mbar.exe ce biti startovan. Na nekim sistemima to moze da potraje nekoliko dodatnih sekundi, te pricekati pokretanje.; - U uvodnom prozoru klikni dugme Next ukoliko si saglasan; • Na 'Update Database' prozoru klik na dugme Update da bi preuzeo sveze definicije. Kada se ispise poruka 'Success: Database was successfully updated' klik na dugme Next; • Pod sekcijom 'Scan Targets' proveri da su sve opcije stiklirane, te klikni na dugme Scan; Obavestenje: sa nekim infekcijama moze se desiti da se prikaze neka od sledecih poruka: - 'Could not load protection driver' => u tom slucaju klikni OK. - 'Could not load DDA driver' => klikni Yes na to obavestenje da bi dozvolio ucitavanje nakon restarta. Dozvoli restart i nastavi sa ostatkom instrukcija posle restarta. >> Ukoliko malware nije detektovan, klik na Exit dugme da zatvoris program. U sledecu poruku postavi mbar-log-year-month-day (sat-minuti-sekundi).txt i system-log.txt izveštaje. >> Ukoliko su infekcija/e pronadjene, proveriti da li je obelezena opcija 'Create Restore Point' i klikni na dugme Cleanup! da bi uklonili pretnje. - Procedura uklanjanje malware-a (scheduled) ce biti zakazana po restartu, bice prikazano obavestenje u pop-up prozoru. Klikni dugme Yes i sistem bi trebao da se restartuje i da zavrsi proceduru ciscenja. Obavestenje! samo ukoliko je RootKit detektovan: - postaraj se da pokrenes fixdamage.exe alat koji se nalazi u mbar folderu, \Plugins\fixdamage.exe: - Dvoklikom pokreni fixdamage, u crnom prozoru koji se otvori (command prompt) ukucaj Y (Y stoji za Yes) da bi nastavio izvrsenje, pricekati da alat odradi sve popravke ... - Kada vidis poruku 'press any key to exit' popravka je kompletirana. Pritisnuti bilo koju tipku na tastaturi da bi se prozor zatvorio. Restartovati sistem. Sledeci izvestaji ce biti formirani u mbar folderu. 1. mbar-log-year-month-day (hour-minute-second).txt 2. system-log.txt Iskopiraj sadrzaj mbar log-a u poruku a system log okaci uz poruku koristeci opciju Prikači fajl.

Profil

Doctor NO Poslao: 28 Nov 2015 22:03 Idi na vrh
offline Doctor NO Građanin Pridružio: 01 Nov 2011 Poruke: 89	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 28 Nov 2015 22:01 Malwarebytes Anti-Rootkit BETA 1.9.3.1001 malwarebytes.org Database version: main: v2015.11.28.04 rootkit: v2015.11.26.01 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 11.0.9600.18097 Bojan :: BOJAN-PC [administrator] 28.11.2015 21:30:29 mbar-log-2015-11-28 (21-30-29).txt Scan type: Quick scan Scan options enabled: Anti-Rootkit \| Drivers \| MBR \| Physical Sectors \| Memory \| Startup \| Registry \| File System \| Heuristics/Extra \| Heuristics/Shuriken Scan options disabled: Objects scanned: 374916 Time elapsed: 26 minute(s), 4 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) Physical Sectors Detected: 0 (No malicious items detected) (end) ........... --------------------------------------- Malwarebytes Anti-Rootkit BETA 1.09.3.1001 (c) Malwarebytes Corporation 2011-2012 OS version: 6.1.7601 Windows 7 Service Pack 1 x64 Account is Administrative Internet Explorer version: 11.0.9600.18097 File system is: NTFS Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED CPU speed: 2.394000 GHz Memory total: 4276060160, free: 2138673152 Downloaded database version: v2015.11.28.04 Downloaded database version: v2015.11.26.01 Downloaded database version: v2015.11.22.02 ======================================= Initializing... Driver version: 0.3.0.4 ------------ Kernel report ------------ 11/28/2015 21:30:19 ------------ Loaded modules ----------- \SystemRoot\system32\ntoskrnl.exe \SystemRoot\system32\hal.dll \SystemRoot\system32\kdcom.dll \SystemRoot\system32\mcupdate_GenuineIntel.dll \SystemRoot\system32\PSHED.dll \SystemRoot\system32\CLFS.SYS \SystemRoot\system32\CI.dll \SystemRoot\system32\drivers\Wdf01000.sys \SystemRoot\system32\drivers\WDFLDR.SYS \SystemRoot\system32\drivers\ACPI.sys \SystemRoot\system32\drivers\WMILIB.SYS \SystemRoot\system32\drivers\msisadrv.sys \SystemRoot\system32\drivers\pci.sys \SystemRoot\system32\drivers\vdrvroot.sys \SystemRoot\System32\drivers\partmgr.sys \SystemRoot\system32\drivers\volmgr.sys \SystemRoot\System32\drivers\volmgrx.sys \SystemRoot\system32\drivers\pciide.sys \SystemRoot\system32\drivers\PCIIDEX.SYS \SystemRoot\System32\drivers\mountmgr.sys \SystemRoot\system32\drivers\atapi.sys \SystemRoot\system32\drivers\ataport.SYS \SystemRoot\system32\drivers\amdxata.sys \SystemRoot\system32\drivers\fltmgr.sys \SystemRoot\system32\drivers\fileinfo.sys \SystemRoot\System32\Drivers\Ntfs.sys \SystemRoot\System32\Drivers\msrpc.sys \SystemRoot\System32\Drivers\ksecdd.sys \SystemRoot\System32\Drivers\cng.sys \SystemRoot\System32\drivers\pcw.sys \SystemRoot\System32\Drivers\Fs_Rec.sys \SystemRoot\system32\drivers\ndis.sys \SystemRoot\system32\drivers\NETIO.SYS \SystemRoot\System32\Drivers\ksecpkg.sys \SystemRoot\System32\drivers\tcpip.sys \SystemRoot\System32\drivers\fwpkclnt.sys \SystemRoot\System32\Drivers\aswRvrt.sys \SystemRoot\System32\Drivers\aswVmm.sys \SystemRoot\system32\drivers\vmstorfl.sys \SystemRoot\system32\drivers\volsnap.sys \SystemRoot\System32\Drivers\spldr.sys \SystemRoot\System32\drivers\rdyboost.sys \SystemRoot\System32\Drivers\mup.sys \SystemRoot\System32\drivers\hwpolicy.sys \SystemRoot\System32\DRIVERS\fvevol.sys \SystemRoot\system32\drivers\disk.sys \SystemRoot\system32\drivers\CLASSPNP.SYS \SystemRoot\system32\DRIVERS\dtsoftbus01.sys \SystemRoot\system32\DRIVERS\cdrom.sys \SystemRoot\system32\drivers\aswSP.sys \SystemRoot\system32\drivers\aswSnx.sys \SystemRoot\System32\Drivers\Null.SYS \SystemRoot\System32\Drivers\Beep.SYS \SystemRoot\System32\drivers\vga.sys \SystemRoot\System32\drivers\VIDEOPRT.SYS \SystemRoot\System32\drivers\watchdog.sys \SystemRoot\System32\DRIVERS\RDPCDD.sys \SystemRoot\system32\drivers\rdpencdd.sys \SystemRoot\system32\drivers\rdprefmp.sys \SystemRoot\System32\Drivers\Msfs.SYS \SystemRoot\System32\Drivers\Npfs.SYS \SystemRoot\system32\DRIVERS\tdx.sys \SystemRoot\system32\DRIVERS\TDI.SYS \SystemRoot\system32\drivers\afd.sys \SystemRoot\system32\drivers\aswRdr2.sys \SystemRoot\System32\DRIVERS\netbt.sys \SystemRoot\system32\DRIVERS\wfplwf.sys \SystemRoot\system32\DRIVERS\pacer.sys \SystemRoot\system32\DRIVERS\vwififlt.sys \SystemRoot\system32\DRIVERS\netbios.sys \SystemRoot\system32\DRIVERS\serial.sys \SystemRoot\system32\DRIVERS\wanarp.sys \SystemRoot\system32\DRIVERS\termdd.sys \SystemRoot\system32\DRIVERS\rdbss.sys \SystemRoot\system32\drivers\nsiproxy.sys \SystemRoot\system32\DRIVERS\mssmbios.sys \SystemRoot\System32\drivers\discache.sys \SystemRoot\system32\drivers\csc.sys \SystemRoot\System32\Drivers\dfsc.sys \SystemRoot\system32\DRIVERS\blbdrive.sys \SystemRoot\system32\DRIVERS\atikmpag.sys \SystemRoot\system32\DRIVERS\atikmdag.sys \SystemRoot\System32\drivers\dxgkrnl.sys \SystemRoot\System32\drivers\dxgmms1.sys \SystemRoot\system32\DRIVERS\HDAudBus.sys \SystemRoot\system32\drivers\usbehci.sys \SystemRoot\system32\drivers\USBPORT.SYS \SystemRoot\system32\DRIVERS\L1C62x64.sys \SystemRoot\system32\DRIVERS\i8042prt.sys \SystemRoot\system32\DRIVERS\kbdclass.sys \SystemRoot\system32\DRIVERS\mouclass.sys \SystemRoot\system32\DRIVERS\serenum.sys \SystemRoot\system32\DRIVERS\parport.sys \SystemRoot\system32\DRIVERS\intelppm.sys \SystemRoot\system32\DRIVERS\CompositeBus.sys \SystemRoot\system32\DRIVERS\AgileVpn.sys \SystemRoot\system32\DRIVERS\rasl2tp.sys \SystemRoot\system32\DRIVERS\ndistapi.sys \SystemRoot\system32\DRIVERS\ndiswan.sys \SystemRoot\system32\DRIVERS\raspppoe.sys \SystemRoot\system32\DRIVERS\raspptp.sys \SystemRoot\system32\DRIVERS\rassstp.sys \SystemRoot\system32\DRIVERS\rdpbus.sys \SystemRoot\system32\DRIVERS\swenum.sys \SystemRoot\system32\DRIVERS\ks.sys \SystemRoot\system32\DRIVERS\umbus.sys \SystemRoot\system32\DRIVERS\usbhub.sys \SystemRoot\System32\Drivers\NDProxy.SYS \SystemRoot\system32\drivers\AtihdW76.sys \SystemRoot\system32\drivers\portcls.sys \SystemRoot\system32\drivers\drmk.sys \SystemRoot\system32\drivers\ksthunk.sys \SystemRoot\system32\drivers\viahduaa.sys \SystemRoot\System32\Drivers\crashdmp.sys \SystemRoot\System32\Drivers\dump_dumpata.sys \SystemRoot\System32\Drivers\dump_atapi.sys \SystemRoot\System32\Drivers\dump_dumpfve.sys \SystemRoot\System32\win32k.sys \SystemRoot\System32\drivers\Dxapi.sys \SystemRoot\system32\DRIVERS\monitor.sys \SystemRoot\System32\TSDDD.dll \SystemRoot\System32\cdd.dll \SystemRoot\System32\ATMFD.DLL \SystemRoot\system32\drivers\luafv.sys \SystemRoot\system32\drivers\aswMonFlt.sys \SystemRoot\system32\drivers\aswStm.sys \SystemRoot\system32\DRIVERS\lltdio.sys \SystemRoot\system32\DRIVERS\nwifi.sys \SystemRoot\system32\DRIVERS\ndisuio.sys \SystemRoot\system32\DRIVERS\rspndr.sys \SystemRoot\system32\drivers\HTTP.sys \SystemRoot\system32\DRIVERS\bowser.sys \SystemRoot\System32\drivers\mpsdrv.sys \SystemRoot\system32\DRIVERS\mrxsmb.sys \SystemRoot\system32\DRIVERS\mrxsmb10.sys \SystemRoot\system32\DRIVERS\mrxsmb20.sys \SystemRoot\system32\drivers\aswHwid.sys \SystemRoot\system32\drivers\peauth.sys \SystemRoot\System32\DRIVERS\srvnet.sys \SystemRoot\System32\drivers\tcpipreg.sys \SystemRoot\System32\DRIVERS\srv2.sys \SystemRoot\System32\DRIVERS\srv.sys \SystemRoot\System32\drivers\ipnat.sys \SystemRoot\system32\drivers\spsys.sys \??\C:\Windows\system32\drivers\mbamchameleon.sys \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys \Windows\System32\ntdll.dll \Windows\System32\smss.exe \Windows\System32\apisetschema.dll \Windows\System32\autochk.exe \Windows\System32\ws2_32.dll \Windows\System32\gdi32.dll \Windows\System32\psapi.dll \Windows\System32\setupapi.dll \Windows\System32\normaliz.dll \Windows\System32\iertutil.dll \Windows\System32\difxapi.dll \Windows\System32\shell32.dll \Windows\System32\comdlg32.dll \Windows\System32\msvcrt.dll \Windows\System32\shlwapi.dll \Windows\System32\Wldap32.dll \Windows\System32\kernel32.dll \Windows\System32\lpk.dll \Windows\System32\msctf.dll \Windows\System32\rpcrt4.dll \Windows\System32\usp10.dll \Windows\System32\sechost.dll \Windows\System32\nsi.dll \Windows\System32\user32.dll \Windows\System32\clbcatq.dll \Windows\System32\oleaut32.dll \Windows\System32\ole32.dll \Windows\System32\urlmon.dll \Windows\System32\advapi32.dll \Windows\System32\imagehlp.dll \Windows\System32\imm32.dll \Windows\System32\wininet.dll \Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll \Windows\System32\devobj.dll \Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll \Windows\System32\comctl32.dll \Windows\System32\userenv.dll \Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll \Windows\System32\crypt32.dll \Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll \Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll \Windows\System32\wintrust.dll \Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll \Windows\System32\cfgmgr32.dll \Windows\System32\KernelBase.dll \Windows\System32\profapi.dll \Windows\System32\msasn1.dll ----------- End ----------- Done! Scan started Database versions: main: v2015.11.28.04 rootkit: v2015.11.26.01 <<<2>>> Physical Sector Size: 512 Drive: 0, DevicePointer: 0xfffffa8004bf62b0, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\ --------- Disk Stack ------ DevicePointer: 0xfffffa8004bf7b90, DeviceName: Unknown, DriverName: \Driver\partmgr\ DevicePointer: 0xfffffa8004bf62b0, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\ DevicePointer: 0xfffffa8004717520, DeviceName: Unknown, DriverName: \Driver\ACPI\ DevicePointer: 0xfffffa8004745060, DeviceName: \Device\Ide\IdeDeviceP3T0L0-3\, DriverName: \Driver\atapi\ ------------ End ---------- Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\ Upper DeviceData: 0x0, 0x0, 0x0 Lower DeviceData: 0x0, 0x0, 0x0 <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes <<<2>>> <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers... Done! Drive 0 This is a System drive Scanning MBR on drive 0... Inspecting partition table: MBR Signature: 55AA Disk Signature: 573ECBC5 Partition information: Partition 0 type is Primary (0x7) Partition is ACTIVE. Partition starts at LBA: 63 Numsec = 348160617 Partition is bootable Partition file system is NTFS Partition 1 type is Extended with LBA (0xf) Partition is NOT ACTIVE. Partition starts at LBA: 348160680 Numsec = 628591320 Partition is not bootable Partition 2 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Partition is not bootable Partition 3 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Partition is not bootable Disk Size: 500107862016 bytes Sector size: 512 bytes Done! File "C:\ProgramData\AVAST Software\Avast\log\AvastSvc.log" is compressed (flags = 1) File "C:\ProgramData\AVAST Software\Avast\log\AvastUI.log" is compressed (flags = 1) File "C:\ProgramData\AVAST Software\Avast\log\Cleanup.log" is compressed (flags = 1) File "C:\ProgramData\AVAST Software\Avast\log\event_manager.log" is compressed (flags = 1) File "C:\ProgramData\AVAST Software\Avast\log\StreamFilter.log" is compressed (flags = 1) Scan finished ======================================= Removal queue found; removal started Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-i.mbam... Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-0-63-i.mbam... Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-1-348160680-i.mbam... Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-r.mbam... Removal finished Dopuna: 28 Nov 2015 22:03 System log sam i kopirao malopre, evo sada prikačeno... mycity.rs/must-login.png

Profil

Sass Drake Poslao: 29 Nov 2015 00:59 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Da li je stanje išta bolje nakon gašenja Windows Defendera?

Profil

Doctor NO Poslao: 29 Nov 2015 09:43 Idi na vrh
offline Doctor NO Građanin Pridružio: 01 Nov 2011 Poruke: 89	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pa, možda vrlo malo ali i dalje je spor :S

Profil

Sass Drake Poslao: 29 Nov 2015 22:37 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Čist si što se malwarea i adwarea tiče. • Sledeća procedura će implementirati završno čišćenje. Preuzmi "Xplode"-ov DelFix alat i snimi ga na Desktop. Dvoklikom pokreni alat i štikliraj kućice ispred sledećih opcija; Remove disinfection tools Create registry backup Purge System Restore Klikni na dugme Run i pričekaj trenutak dok alat ne završi svoj rad. Od ovog trenutka, svi korišćeni alati u ovoj temi bi trebali biti obrisani. Alat će takođe formirati izveštaj za tebe. (C:\DelFix.txt) Alat će snimiti i zdravo stanje registy-ja i napraviti backup koristeci integrisan program "ERUNT" u %windir%\ERUNT\DelFix Alat briše stare system restore tačke i pravi novu, svežu tačku nakon čišćenja. Probaj da reisntaliraš Avast i onda vidi kakvo je stanje. Ak oto ne pomogne otvori temu u Windows forumu.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Racunar koci, sporo se pokrece i gasi, potrebna provera

Ko je trenutno na forumu

Ukupno su 837 korisnika na forumu :: 8 registrovanih, 0 sakrivenih i 829 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: Fabius, goxin, Neutral-M, opt1, Romibrat, SR-3m, TBF1D, wizzardone

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by