MyCity » Ambulanta -> Arhiva Ambulante » Računar se gasi

Računar se gasi

Napisano na dan: 16.4.2016

Računar se gasi

Sledeća strana

Pagination

Odgovori

crno dete Poslao: 16 Apr 2016 04:43 Idi na vrh
offline crno dete Novi MyCity građanin Pridružio: 14 Avg 2015 Poruke: 25	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 16 Apr 2016 2:56 Dobro veče. Već dva dana mi se gasi računar. Ne znam da li je neka infekcija ili dotrajalost baterije u pitanju. Pored ikonice baterije stoji obaveštenje "Consider replacing your battery", kao i " There is a problem with your battery, so your computer might shut down suddenly". Zameniću je ako je tako. Trenutno sam od prijatelja pozajmio njegov punjač, koji je skroz ispravan, i opet stoji ista poruka. Ipak, sama baterija je topla, što me navdodi na zaključak da je možda ok, kao i na to da se računar inficirao. Generalno, nisam imao nekih rizičnih akcija u poslednje vreme. Primećujem da računar sporije izvršava komande nego inače. Antivirus ništa ne prijavljuje. Toliko za sada. Hvala unapred. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-04-2016 Ran by Mesh (administrator) on DIOGEN (16-04-2016 02:42:14) Running from C:\Users\Mesh\Desktop Loaded Profiles: Mesh (Available Profiles: Mesh) Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: [Link mogu videti samo ulogovani korisnici] ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe (Ellora Assets Corp.) C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler64.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe () C:\Windows\SysWOW64\PnkBstrA.exe () C:\Windows\SysWOW64\PnkBstrB.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595480 2016-03-20] (Oracle Corporation) HKU\S-1-5-21-4209369173-3384524162-1790046760-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd) HKU\S-1-5-21-4209369173-3384524162-1790046760-1000\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-4209369173-3384524162-1790046760-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 89.216.1.40 89.216.1.50 Tcpip\..\Interfaces\{1C56B0E3-AB8F-4DAB-AF2D-1A64BB81223B}: [DhcpNameServer] 89.216.1.40 89.216.1.50 Tcpip\..\Interfaces\{802476BF-2C34-448B-85E6-8A295CD6DA12}: [DhcpNameServer] 192.168.42.129 Internet Explorer: ================== HKU\S-1-5-21-4209369173-3384524162-1790046760-1000\Software\Microsoft\Internet Explorer\Main,Start Page = [Link mogu videti samo ulogovani korisnici] SearchScopes: HKU\S-1-5-21-4209369173-3384524162-1790046760-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms} BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2013-09-13] (Microsoft Corporation) BHO-x32: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2011-09-05] (Adobe Systems Incorporated) BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05] (Adobe Systems Incorporated) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-03-26] (Oracle Corporation) BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems Incorporated) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2013-09-13] (Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-21] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-03-26] (Oracle Corporation) BHO-x32: Freemake.YoutubeButton -> {e9e8eb35-ff77-455d-b677-91e5e4fc06c2} -> C:\Windows\SysWOW64\mscoree.dll [2010-11-21] (Microsoft Corporation) BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems Incorporated) Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems Incorporated) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2014-04-01] (Microsoft Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies) StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF ProfilePath: C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\iec5ho8w.default-1458514395288 FF Session Restore: -> is enabled. FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-04-15] () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-05] ( Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File] FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-15] () FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-04-15] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-04-15] (Foxit Corporation) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.) FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-03-26] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-03-26] (Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2013-11-15] (Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-05] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2011-01-16] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2011-01-16] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2011-09-05] (Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [No File] FF Plugin HKU\S-1-5-21-4209369173-3384524162-1790046760-1000: @rising.com.cn/nprising -> C:\Program Files (x86)\Rising\RAV\nprising.dll [No File] FF Plugin HKU\S-1-5-21-4209369173-3384524162-1790046760-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Mesh\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-07-21] (Unity Technologies ApS) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2013-11-15] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2003-05-15] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppluginrichmediaplayer.dll [2013-03-12] () FF Extension: Adblock Plus Pop-up Addon - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\x2udtauw.Keri\Extensions\adblockpopups@jessehakanen.net.xpi [2012-11-29] [not signed] FF Extension: Shareaholic - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\x2udtauw.Keri\Extensions\firefox-extension@shareaholic.com.xpi [2012-11-29] [not signed] FF Extension: NASA Night Launch - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\x2udtauw.Keri\Extensions\nasanightlaunch@example.com.xpi [2012-12-30] [not signed] FF Extension: Feedback - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\x2udtauw.Keri\Extensions\testpilot@labs.mozilla.com.xpi [2012-10-31] [not signed] FF Extension: Thumbnail Zoom Plus - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\x2udtauw.Keri\Extensions\thumbnailZoom@dadler.github.com.xpi [2012-12-08] [not signed] FF Extension: 8 Ultimo - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\x2udtauw.Keri\Extensions\{2b6788a0-0ccd-11e1-be50-0800200c9a66} [2012-11-29] [not signed] FF Extension: MeasureIt - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\x2udtauw.Keri\Extensions\{75CEEE46-9B64-46f8-94BF-54012DE155F0}.xpi [2012-11-29] [not signed] FF Extension: FT DeepDark - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\x2udtauw.Keri\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2012-11-29] [not signed] FF Extension: Adblock Plus - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\x2udtauw.Keri\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-11-29] [not signed] FF Extension: Privacy Badger - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\iec5ho8w.default-1458514395288\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2016-03-21] FF Extension: Pin It button - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\iec5ho8w.default-1458514395288\Extensions\jid1-YcMV6ngYmQRA2w@jetpack.xpi [2016-04-14] FF Extension: Tab Groups - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\iec5ho8w.default-1458514395288\Extensions\tabgroups@quicksaver.xpi [2016-03-21] FF Extension: Adblock Plus - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\iec5ho8w.default-1458514395288\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-03-21] FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2012-07-24] [not signed] FF HKLM-x32\...\Firefox\Extensions: [fmdownloader@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com FF Extension: Freemake Video Downloader Plugin - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com [2014-06-05] [not signed] FF HKLM-x32\...\Firefox\Extensions: [ytfmdownloader@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com FF Extension: Freemake Youtube Download Button - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com [2014-06-05] [not signed] Chrome: ======= CHR Profile: C:\Users\Mesh\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Slides) - C:\Users\Mesh\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-29] CHR Extension: (Google Docs) - C:\Users\Mesh\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-29] CHR Extension: (Google Drive) - C:\Users\Mesh\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-29] CHR Extension: (YouTube) - C:\Users\Mesh\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-29] CHR Extension: (Google Search) - C:\Users\Mesh\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-29] CHR Extension: (Google Sheets) - C:\Users\Mesh\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-12-29] CHR Extension: (Google Docs Offline) - C:\Users\Mesh\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15] CHR Extension: (Chrome Web Store Payments) - C:\Users\Mesh\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-12-29] CHR Extension: (Gmail) - C:\Users\Mesh\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-29] CHR HKLM-x32\...\Chrome\Extension: [bpegkgagfojjbcpkihigfmkojdmmimdf] - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2012-07-25] Opera: ======= OPR Extension: (Adblock Plus) - C:\Users\Mesh\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2015-09-30] ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [974944 2011-08-09] (ESET) R2 FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [9216 2014-12-03] (Ellora Assets Corp.) [File not signed] R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2012-08-05] () R2 PnkBstrB; C:\Windows\SysWOW64\PnkBstrB.exe [107832 2012-08-05] () R2 Themes; C:\Windows\system32\themeservice.dll [44544 2014-12-07] (Microsoft Corporation) [File not signed] S2 UnsignedThemes; C:\Windows\UnsignedThemesSvc.exe [24168 2009-07-13] (The Within Network, LLC) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) ===================== Drivers (Whitelisted) ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [202576 2011-08-09] (ESET) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [146432 2011-08-04] (ESET) S4 epfw; C:\Windows\System32\DRIVERS\epfw.sys [187632 2011-08-04] (ESET) R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [38288 2011-08-04] (ESET) S4 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [62496 2011-08-04] (ESET) S3 massfilter_hs; C:\Windows\system32\drivers\massfilter_hs.sys [20232 2012-06-20] (HandSet Incorporated) R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-04-23] (Duplex Secure Ltd.) U3 adedghv0; C:\Windows\System32\Drivers\adedghv0.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder) S1 HyperVM; \??\C:\Windows\system32\drivers\hvm.sys [X] S0 sysmon; system32\DRIVERS\sysmon.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-04-16 02:42 - 2016-04-16 02:43 - 00017631 _____ C:\Users\Mesh\Desktop\FRST.txt 2016-04-16 02:41 - 2016-04-16 02:41 - 02375168 _____ (Farbar) C:\Users\Mesh\Desktop\FRST64.exe 2016-04-15 23:39 - 2016-04-15 23:39 - 00000077 _____ C:\wepkeys.txt 2016-04-15 03:52 - 2016-04-15 03:52 - 20366528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe 2016-04-15 03:12 - 2016-04-15 03:12 - 02746404 _____ C:\Users\Mesh\Desktop\uliksreload-Copypdf.pdf 2016-04-15 03:08 - 2016-04-15 03:08 - 01737227 _____ C:\Users\Mesh\Desktop\depresija.pdf 2016-04-15 03:06 - 2016-04-15 03:06 - 01508949 _____ C:\Users\Mesh\Desktop\thomas-wolfe-pogledaj-dom-svoj-andjele.pdf 2016-04-15 01:14 - 2016-04-15 03:45 - 00000000 ____D C:\Users\Mesh\Desktop\Global Trading Exchange Inc 2016-04-12 04:54 - 2016-04-15 02:44 - 00000000 ____D C:\Users\Mesh\Desktop\w 2016-04-11 23:51 - 2016-04-12 01:00 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-04-10 18:31 - 2016-04-10 18:31 - 00000000 ____D C:\Users\Mesh\AppData\Local\ElevatedDiagnostics 2016-04-08 12:42 - 2016-04-08 12:42 - 00145096 _____ C:\Users\Mesh\AppData\Local\GDIPFONTCACHEV1.DAT 2016-04-08 11:30 - 2016-04-08 11:30 - 05237336 _____ C:\Windows\system32\FNTCACHE.DAT 2016-04-07 07:47 - 2016-04-07 07:47 - 00000000 ____D C:\Users\Mesh\Desktop\Exercise Files 2016-04-05 12:15 - 2016-04-15 03:50 - 00000000 ____D C:\Users\Mesh\AppData\Local\Adobe 2016-04-05 12:15 - 2016-03-31 06:55 - 00000034 _____ C:\Users\Mesh\AppData\Roaming\AdobeWLCMCache.dat 2016-03-30 01:47 - 2016-03-30 01:48 - 00000000 ____D C:\Users\Mesh\Desktop\poetry 2016-03-29 06:12 - 2015-05-01 11:58 - 19543749 _____ C:\Users\Mesh\Desktop\Robert-Grin-48-Zakona-Moci.pdf 2016-03-29 03:01 - 2016-04-13 00:26 - 00000269 _____ C:\Windows\internetchesskiller.ini 2016-03-29 02:02 - 2016-04-14 23:01 - 00000000 ____D C:\Users\Mesh\AppData\Roaming\Adobe 2016-03-25 06:26 - 2016-03-25 06:26 - 00000000 ____D C:\Users\Mesh\AppData\Roaming\SumatraPDF 2016-03-25 05:31 - 2016-03-25 05:32 - 00000000 ____D C:\Users\Mesh\AppData\Roaming\Atom 2016-03-25 05:31 - 2016-03-25 05:32 - 00000000 ____D C:\Users\Mesh\.atom 2016-03-25 05:31 - 2016-03-25 05:31 - 00000000 ____D C:\Users\Mesh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GitHub, Inc 2016-03-25 05:30 - 2016-03-25 05:31 - 00000000 ____D C:\Users\Mesh\AppData\Local\SquirrelTemp 2016-03-25 05:30 - 2016-03-25 05:31 - 00000000 ____D C:\Users\Mesh\AppData\Local\atom 2016-03-23 06:55 - 2016-03-23 16:33 - 00001294 _____ C:\Users\Mesh\AppData\Local\SnipUsages.txt 2016-03-23 06:48 - 2016-03-23 16:33 - 00004290 _____ C:\Users\Mesh\AppData\Local\Snip.txt 2016-03-23 06:48 - 2016-03-23 06:48 - 00000000 ____D C:\Users\Mesh\AppData\Local\Microsoft_Corporation 2016-03-23 03:04 - 2016-04-14 23:01 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe 2016-03-18 04:14 - 2016-03-18 04:14 - 00710365 _____ C:\Users\Mesh\Desktop\snaga-utopije.pdf 2016-03-17 04:42 - 2016-03-17 04:42 - 00000000 ____D C:\Users\Mesh\AppData\Roaming\edu.media.mit.Scratch2Editor 2016-03-17 04:41 - 2016-03-17 04:41 - 00000897 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Scratch 2.lnk 2016-03-17 04:41 - 2016-03-17 04:41 - 00000000 ____D C:\Program Files (x86)\Scratch 2 2016-03-17 04:38 - 2016-03-17 04:39 - 66743009 _____ C:\Scratch-444.3.exe 2016-03-17 01:22 - 2016-03-21 23:29 - 00000000 ____D C:\Users\Mesh\AppData\Local\NFS Underground 2 2016-03-17 01:21 - 2016-03-17 01:21 - 00000000 ____D C:\Users\Mesh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NeedForSpeed Underground 2 GreeveX MOD 2016-03-17 01:19 - 2016-03-17 01:19 - 00000000 ____D C:\Program Files (x86)\EA Games & GreeveX ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-04-16 02:42 - 2015-08-14 13:44 - 00000000 ____D C:\FRST 2016-04-16 02:40 - 2014-01-21 13:48 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-04-16 02:39 - 2012-07-25 01:24 - 00000000 ____D C:\ProgramData\NVIDIA 2016-04-16 02:38 - 2014-01-21 13:48 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-04-16 02:38 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-04-16 02:36 - 2009-07-14 06:45 - 00029168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-04-16 02:36 - 2009-07-14 06:45 - 00029168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-04-16 02:33 - 2009-07-14 07:13 - 00782510 _____ C:\Windows\system32\PerfStringBackup.INI 2016-04-16 02:33 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf 2016-04-16 02:29 - 2012-10-01 04:13 - 00003914 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{84005110-EA47-4FCC-A8B1-0CFC2347E861} 2016-04-16 02:11 - 2012-07-24 22:38 - 00000000 ____D C:\Program Files (x86)\The KMPlayer 2016-04-16 01:52 - 2013-01-24 04:15 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-04-15 03:52 - 2013-01-24 04:15 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2016-04-15 03:52 - 2012-11-21 05:17 - 00801984 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2016-04-15 03:52 - 2012-11-21 05:17 - 00143040 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2016-04-14 23:51 - 2014-06-05 21:01 - 00003834 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1378421089 2016-04-14 23:51 - 2013-09-06 00:44 - 00000000 ____D C:\Program Files (x86)\Opera 2016-04-14 23:01 - 2012-10-22 05:16 - 00000000 ____D C:\Users\Mesh\Documents\Adobe 2016-04-14 23:01 - 2012-10-12 23:43 - 00000000 ____D C:\Users\Mesh\AppData\LocalLow\Adobe 2016-04-14 18:22 - 2015-05-12 16:30 - 00000000 ____D C:\Users\Mesh\AppData\Roaming\AIMP3 2016-04-14 06:11 - 2012-07-24 23:20 - 00000000 ____D C:\Users\Mesh\AppData\Roaming\uTorrent 2016-04-14 06:07 - 2012-07-24 22:42 - 00000000 ____D C:\Users\Mesh\AppData\Roaming\vlc 2016-04-14 00:13 - 2015-09-29 23:26 - 00005445 _____ C:\Users\Mesh\Desktop\linx.txt 2016-04-12 14:35 - 2015-10-05 20:14 - 00000000 ____D C:\Users\Mesh\Desktop\wb 2016-04-12 01:17 - 2009-07-14 07:08 - 00032562 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2016-04-12 01:16 - 2012-10-23 16:35 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2016-04-11 23:42 - 2015-01-07 17:43 - 00002199 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-04-10 18:31 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF 2016-04-08 20:51 - 2012-10-22 02:02 - 00000000 ____D C:\Program Files\Common Files\Adobe 2016-04-08 03:32 - 2016-02-04 07:00 - 00000000 ____D C:\Users\Mesh\AppData\Roaming\CDisplayEx 2016-04-08 02:00 - 2012-07-24 22:14 - 00000000 ____D C:\Users\Mesh\AppData\Roaming\DAEMON Tools Lite 2016-03-31 05:18 - 2012-10-11 02:20 - 00000000 ____D C:\ProgramData\Adobe 2016-03-31 05:13 - 2012-10-22 02:05 - 00000000 ____D C:\Program Files (x86)\Adobe 2016-03-31 05:13 - 2012-10-22 02:03 - 00000000 ____D C:\Program Files\Adobe 2016-03-29 02:01 - 2012-07-25 01:58 - 00000000 ____D C:\Users\Mesh\AppData\Roaming\Adobe-Backup 2016-03-26 03:28 - 2013-10-20 23:24 - 00000000 ____D C:\ProgramData\Oracle 2016-03-26 03:26 - 2014-01-22 00:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2016-03-26 03:26 - 2013-03-10 16:32 - 00000000 ____D C:\Program Files (x86)\Java 2016-03-26 03:25 - 2015-08-27 23:33 - 00000000 ____D C:\Users\Mesh\.oracle_jre_usage 2016-03-26 03:25 - 2014-01-22 00:05 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2016-03-25 05:35 - 2015-10-05 16:48 - 00000000 ____D C:\Program Files (x86)\Brackets 2016-03-25 05:31 - 2012-07-24 20:28 - 00000000 ____D C:\Users\Mesh 2016-03-21 02:26 - 2015-09-26 11:07 - 00000000 ____D C:\Users\Mesh\Desktop\Old Firefox Data 2016-03-20 05:05 - 2015-09-27 18:03 - 00002636 _____ C:\Users\Mesh\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk 2016-03-17 01:22 - 2016-03-15 01:18 - 00000000 ____D C:\Users\Mesh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games ==================== Files in the root of some directories ======= 2012-08-18 01:58 - 2012-08-18 01:58 - 0893936 _____ (Oracle Corporation) C:\Program Files\chromeinstall-7u5.exe 2013-03-11 20:30 - 2013-03-11 20:30 - 0000132 _____ () C:\Users\Mesh\AppData\Roaming\Adobe GIF Format CS6 Prefs 2016-04-05 12:15 - 2016-03-31 06:55 - 0000034 _____ () C:\Users\Mesh\AppData\Roaming\AdobeWLCMCache.dat 2012-07-25 00:47 - 2015-12-29 06:24 - 0007597 _____ () C:\Users\Mesh\AppData\Local\Resmon.ResmonCfg 2016-03-23 06:48 - 2016-03-23 16:33 - 0004290 _____ () C:\Users\Mesh\AppData\Local\Snip.txt 2016-03-23 06:55 - 2016-03-23 16:33 - 0001294 _____ () C:\Users\Mesh\AppData\Local\SnipUsages.txt Some files in TEMP: ==================== C:\Users\Mesh\AppData\Local\Temp\KMP_4.0.6.4.exe ==================== Bamital & volsnap ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2016-04-08 19:22 ==================== End of FRST.txt ============================ [Link mogu videti samo ulogovani korisnici] Dopuna: 16 Apr 2016 5:43 Nisam se dobro izrazio; mislio sam na punjač. Računar sve vreme pokazuje gorepomenute poruke, čak i kada koristim drugarov. Možda je baterija neispravna, a možda je nešto treće.

Profil

return void Poslao: 17 Apr 2016 20:00 Idi na vrh
offline return void Anti Malware Fighter Rank 1 Pridružio: 02 Jan 2008 Poruke: 2167	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozdrav! Problem koji ti imas nije uzrokovan malverom, vec je tu najverovatnije problem baterija, kao sto sam kazes. Ipak, najbolje je da posetis Hardver deo na forumu ( [Link mogu videti samo ulogovani korisnici] ), pa da se posle toga vratis u Ambulantu, cisto radi provere ako zelis.

Profil

crno dete Poslao: 19 Apr 2016 00:08 Idi na vrh
offline crno dete Novi MyCity građanin Pridružio: 14 Avg 2015 Poruke: 25	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 17 Apr 2016 23:42 U redu. Hvala. Dopuna: 19 Apr 2016 0:58 Danas sam nosio računar u servis i zaključak je da je baterija crkla, te da je pravila smetnje normanom radu punjača. Uklonio sam bateriju, kako mi je majstor rekao, i tokom dana je sve bilo ok. Ja nemam kući internet, pa sam sada došao kod druga. Računar se 2 puta ugasio, tokom 30ak minuta surfovanja. Ne znam šta ne valja. Generalno, online rad je usporen. Ponovo ću FRST-om prečešljati računar i poslaću izveštaje. Dopuna: 19 Apr 2016 1:08 Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-04-2016 Ran by Mesh (administrator) on DIOGEN (19-04-2016 01:00:12) Running from C:\Users\Mesh\Desktop Loaded Profiles: Mesh (Available Profiles: Mesh) Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: [Link mogu videti samo ulogovani korisnici] ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Ellora Assets Corp.) C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler64.exe (Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe () C:\Windows\SysWOW64\PnkBstrA.exe () C:\Windows\SysWOW64\PnkBstrB.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595480 2016-03-20] (Oracle Corporation) HKU\S-1-5-21-4209369173-3384524162-1790046760-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd) HKU\S-1-5-21-4209369173-3384524162-1790046760-1000\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-4209369173-3384524162-1790046760-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 89.216.1.40 89.216.1.50 Tcpip\..\Interfaces\{1C56B0E3-AB8F-4DAB-AF2D-1A64BB81223B}: [DhcpNameServer] 89.216.1.40 89.216.1.50 Tcpip\..\Interfaces\{802476BF-2C34-448B-85E6-8A295CD6DA12}: [DhcpNameServer] 192.168.42.129 Internet Explorer: ================== HKU\S-1-5-21-4209369173-3384524162-1790046760-1000\Software\Microsoft\Internet Explorer\Main,Start Page = [Link mogu videti samo ulogovani korisnici] SearchScopes: HKU\S-1-5-21-4209369173-3384524162-1790046760-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms} BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2013-09-13] (Microsoft Corporation) BHO-x32: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2011-09-05] (Adobe Systems Incorporated) BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05] (Adobe Systems Incorporated) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-03-26] (Oracle Corporation) BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems Incorporated) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2013-09-13] (Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-21] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-03-26] (Oracle Corporation) BHO-x32: Freemake.YoutubeButton -> {e9e8eb35-ff77-455d-b677-91e5e4fc06c2} -> C:\Windows\SysWOW64\mscoree.dll [2010-11-21] (Microsoft Corporation) BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems Incorporated) Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems Incorporated) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2014-04-01] (Microsoft Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies) StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF ProfilePath: C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\iec5ho8w.default-1458514395288 FF Session Restore: -> is enabled. FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-04-15] () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-05] ( Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File] FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-15] () FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-04-15] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-04-15] (Foxit Corporation) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.) FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-03-26] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-03-26] (Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2013-11-15] (Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-05] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2011-01-16] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2011-01-16] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2011-09-05] (Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [No File] FF Plugin HKU\S-1-5-21-4209369173-3384524162-1790046760-1000: @rising.com.cn/nprising -> C:\Program Files (x86)\Rising\RAV\nprising.dll [No File] FF Plugin HKU\S-1-5-21-4209369173-3384524162-1790046760-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Mesh\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-07-21] (Unity Technologies ApS) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2013-11-15] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2003-05-15] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppluginrichmediaplayer.dll [2013-03-12] () FF Extension: Adblock Plus Pop-up Addon - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\x2udtauw.Keri\Extensions\adblockpopups@jessehakanen.net.xpi [2012-11-29] [not signed] FF Extension: Shareaholic - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\x2udtauw.Keri\Extensions\firefox-extension@shareaholic.com.xpi [2012-11-29] [not signed] FF Extension: NASA Night Launch - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\x2udtauw.Keri\Extensions\nasanightlaunch@example.com.xpi [2012-12-30] [not signed] FF Extension: Feedback - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\x2udtauw.Keri\Extensions\testpilot@labs.mozilla.com.xpi [2012-10-31] [not signed] FF Extension: Thumbnail Zoom Plus - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\x2udtauw.Keri\Extensions\thumbnailZoom@dadler.github.com.xpi [2012-12-08] [not signed] FF Extension: 8 Ultimo - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\x2udtauw.Keri\Extensions\{2b6788a0-0ccd-11e1-be50-0800200c9a66} [2012-11-29] [not signed] FF Extension: MeasureIt - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\x2udtauw.Keri\Extensions\{75CEEE46-9B64-46f8-94BF-54012DE155F0}.xpi [2012-11-29] [not signed] FF Extension: FT DeepDark - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\x2udtauw.Keri\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2012-11-29] [not signed] FF Extension: Adblock Plus - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\x2udtauw.Keri\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-11-29] [not signed] FF Extension: Privacy Badger - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\iec5ho8w.default-1458514395288\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2016-03-21] FF Extension: Pin It button - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\iec5ho8w.default-1458514395288\Extensions\jid1-YcMV6ngYmQRA2w@jetpack.xpi [2016-04-14] FF Extension: Tab Groups - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\iec5ho8w.default-1458514395288\Extensions\tabgroups@quicksaver.xpi [2016-03-21] FF Extension: Adblock Plus - C:\Users\Mesh\AppData\Roaming\Mozilla\Firefox\Profiles\iec5ho8w.default-1458514395288\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-03-21] FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2012-07-24] [not signed] FF HKLM-x32\...\Firefox\Extensions: [fmdownloader@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com FF Extension: Freemake Video Downloader Plugin - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com [2014-06-05] [not signed] FF HKLM-x32\...\Firefox\Extensions: [ytfmdownloader@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com FF Extension: Freemake Youtube Download Button - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com [2014-06-05] [not signed] Chrome: ======= CHR Profile: C:\Users\Mesh\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Slides) - C:\Users\Mesh\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-29] CHR Extension: (Google Docs) - C:\Users\Mesh\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-29] CHR Extension: (Google Drive) - C:\Users\Mesh\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-29] CHR Extension: (YouTube) - C:\Users\Mesh\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-29] CHR Extension: (Google Search) - C:\Users\Mesh\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-29] CHR Extension: (Google Sheets) - C:\Users\Mesh\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-12-29] CHR Extension: (Google Docs Offline) - C:\Users\Mesh\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15] CHR Extension: (Chrome Web Store Payments) - C:\Users\Mesh\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-12-29] CHR Extension: (Gmail) - C:\Users\Mesh\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-29] CHR HKLM-x32\...\Chrome\Extension: [bpegkgagfojjbcpkihigfmkojdmmimdf] - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2012-07-25] Opera: ======= OPR Extension: (Adblock Plus) - C:\Users\Mesh\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2015-09-30] ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [974944 2011-08-09] (ESET) R2 FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [9216 2014-12-03] (Ellora Assets Corp.) [File not signed] R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2012-08-05] () R2 PnkBstrB; C:\Windows\SysWOW64\PnkBstrB.exe [107832 2012-08-05] () R2 Themes; C:\Windows\system32\themeservice.dll [44544 2014-12-07] (Microsoft Corporation) [File not signed] S2 UnsignedThemes; C:\Windows\UnsignedThemesSvc.exe [24168 2009-07-13] (The Within Network, LLC) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) ===================== Drivers (Whitelisted) ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [202576 2011-08-09] (ESET) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [146432 2011-08-04] (ESET) S4 epfw; C:\Windows\System32\DRIVERS\epfw.sys [187632 2011-08-04] (ESET) R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [38288 2011-08-04] (ESET) S4 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [62496 2011-08-04] (ESET) S3 massfilter_hs; C:\Windows\system32\drivers\massfilter_hs.sys [20232 2012-06-20] (HandSet Incorporated) R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-04-23] (Duplex Secure Ltd.) U3 azixnoyy; C:\Windows\System32\Drivers\azixnoyy.sys [0 ] (Advanced Micro Devices) <==== ATTENTION (zero byte File/Folder) S1 HyperVM; \??\C:\Windows\system32\drivers\hvm.sys [X] S0 sysmon; system32\DRIVERS\sysmon.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-04-19 01:00 - 2016-04-19 01:00 - 00017501 _____ C:\Users\Mesh\Desktop\FRST.txt 2016-04-17 03:17 - 2016-04-17 03:17 - 00003408 ____N C:\bootsqm.dat 2016-04-17 01:57 - 2016-04-17 01:57 - 19501685 _____ C:\Users\Mesh\Desktop\Sloterdijk_Peter_Critique_of_Cynical_Reason.pdf 2016-04-16 02:41 - 2016-04-16 02:41 - 02375168 _____ (Farbar) C:\Users\Mesh\Desktop\FRST64.exe 2016-04-15 23:39 - 2016-04-15 23:39 - 00000077 _____ C:\wepkeys.txt 2016-04-15 03:52 - 2016-04-15 03:52 - 20366528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe 2016-04-15 03:12 - 2016-04-15 03:12 - 02746404 _____ C:\Users\Mesh\Desktop\uliksreload-Copypdf.pdf 2016-04-15 03:08 - 2016-04-15 03:08 - 01737227 _____ C:\Users\Mesh\Desktop\depresija.pdf 2016-04-15 03:06 - 2016-04-15 03:06 - 01508949 _____ C:\Users\Mesh\Desktop\thomas-wolfe-pogledaj-dom-svoj-andjele.pdf 2016-04-15 01:14 - 2016-04-15 03:45 - 00000000 ____D C:\Users\Mesh\Desktop\Global Trading Exchange Inc 2016-04-12 04:54 - 2016-04-15 02:44 - 00000000 ____D C:\Users\Mesh\Desktop\w 2016-04-11 23:51 - 2016-04-12 01:00 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-04-10 18:31 - 2016-04-10 18:31 - 00000000 ____D C:\Users\Mesh\AppData\Local\ElevatedDiagnostics 2016-04-08 12:42 - 2016-04-08 12:42 - 00145096 _____ C:\Users\Mesh\AppData\Local\GDIPFONTCACHEV1.DAT 2016-04-08 11:30 - 2016-04-08 11:30 - 05237336 _____ C:\Windows\system32\FNTCACHE.DAT 2016-04-07 07:47 - 2016-04-07 07:47 - 00000000 ____D C:\Users\Mesh\Desktop\Exercise Files 2016-04-05 12:15 - 2016-04-15 03:50 - 00000000 ____D C:\Users\Mesh\AppData\Local\Adobe 2016-04-05 12:15 - 2016-03-31 06:55 - 00000034 _____ C:\Users\Mesh\AppData\Roaming\AdobeWLCMCache.dat 2016-03-30 01:47 - 2016-03-30 01:48 - 00000000 ____D C:\Users\Mesh\Desktop\poetry 2016-03-29 06:12 - 2015-05-01 11:58 - 19543749 _____ C:\Users\Mesh\Desktop\Robert-Grin-48-Zakona-Moci.pdf 2016-03-29 03:01 - 2016-04-13 00:26 - 00000269 _____ C:\Windows\internetchesskiller.ini 2016-03-29 02:02 - 2016-04-14 23:01 - 00000000 ____D C:\Users\Mesh\AppData\Roaming\Adobe 2016-03-25 06:26 - 2016-03-25 06:26 - 00000000 ____D C:\Users\Mesh\AppData\Roaming\SumatraPDF 2016-03-25 05:31 - 2016-03-25 05:32 - 00000000 ____D C:\Users\Mesh\AppData\Roaming\Atom 2016-03-25 05:31 - 2016-03-25 05:32 - 00000000 ____D C:\Users\Mesh\.atom 2016-03-25 05:31 - 2016-03-25 05:31 - 00000000 ____D C:\Users\Mesh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GitHub, Inc 2016-03-25 05:30 - 2016-03-25 05:31 - 00000000 ____D C:\Users\Mesh\AppData\Local\SquirrelTemp 2016-03-25 05:30 - 2016-03-25 05:31 - 00000000 ____D C:\Users\Mesh\AppData\Local\atom 2016-03-23 06:55 - 2016-03-23 16:33 - 00001294 _____ C:\Users\Mesh\AppData\Local\SnipUsages.txt 2016-03-23 06:48 - 2016-03-23 16:33 - 00004290 _____ C:\Users\Mesh\AppData\Local\Snip.txt 2016-03-23 06:48 - 2016-03-23 06:48 - 00000000 ____D C:\Users\Mesh\AppData\Local\Microsoft_Corporation 2016-03-23 03:04 - 2016-04-14 23:01 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-04-19 01:00 - 2015-08-14 13:44 - 00000000 ____D C:\FRST 2016-04-19 00:57 - 2014-01-21 13:48 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-04-19 00:57 - 2012-07-25 01:24 - 00000000 ____D C:\ProgramData\NVIDIA 2016-04-19 00:57 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-04-19 00:55 - 2009-07-14 06:45 - 00029168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-04-19 00:55 - 2009-07-14 06:45 - 00029168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-04-19 00:52 - 2013-01-24 04:15 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-04-19 00:51 - 2009-07-14 07:13 - 00782510 _____ C:\Windows\system32\PerfStringBackup.INI 2016-04-19 00:51 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf 2016-04-19 00:42 - 2012-10-01 04:13 - 00003914 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{84005110-EA47-4FCC-A8B1-0CFC2347E861} 2016-04-19 00:40 - 2014-01-21 13:48 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-04-18 19:00 - 2015-05-12 16:30 - 00000000 ____D C:\Users\Mesh\AppData\Roaming\AIMP3 2016-04-17 00:40 - 2015-09-29 23:26 - 00005634 _____ C:\Users\Mesh\Desktop\linx.txt 2016-04-16 14:58 - 2012-07-24 22:38 - 00000000 ____D C:\Program Files (x86)\The KMPlayer 2016-04-15 03:52 - 2013-01-24 04:15 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2016-04-15 03:52 - 2012-11-21 05:17 - 00801984 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2016-04-15 03:52 - 2012-11-21 05:17 - 00143040 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2016-04-14 23:51 - 2014-06-05 21:01 - 00003834 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1378421089 2016-04-14 23:51 - 2013-09-06 00:44 - 00000000 ____D C:\Program Files (x86)\Opera 2016-04-14 23:01 - 2012-10-22 05:16 - 00000000 ____D C:\Users\Mesh\Documents\Adobe 2016-04-14 23:01 - 2012-10-12 23:43 - 00000000 ____D C:\Users\Mesh\AppData\LocalLow\Adobe 2016-04-14 06:11 - 2012-07-24 23:20 - 00000000 ____D C:\Users\Mesh\AppData\Roaming\uTorrent 2016-04-14 06:07 - 2012-07-24 22:42 - 00000000 ____D C:\Users\Mesh\AppData\Roaming\vlc 2016-04-12 14:35 - 2015-10-05 20:14 - 00000000 ____D C:\Users\Mesh\Desktop\wb 2016-04-12 01:17 - 2009-07-14 07:08 - 00032562 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2016-04-12 01:16 - 2012-10-23 16:35 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2016-04-11 23:42 - 2015-01-07 17:43 - 00002199 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-04-10 18:31 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF 2016-04-08 20:51 - 2012-10-22 02:02 - 00000000 ____D C:\Program Files\Common Files\Adobe 2016-04-08 03:32 - 2016-02-04 07:00 - 00000000 ____D C:\Users\Mesh\AppData\Roaming\CDisplayEx 2016-04-08 02:00 - 2012-07-24 22:14 - 00000000 ____D C:\Users\Mesh\AppData\Roaming\DAEMON Tools Lite 2016-03-31 05:18 - 2012-10-11 02:20 - 00000000 ____D C:\ProgramData\Adobe 2016-03-31 05:13 - 2012-10-22 02:05 - 00000000 ____D C:\Program Files (x86)\Adobe 2016-03-31 05:13 - 2012-10-22 02:03 - 00000000 ____D C:\Program Files\Adobe 2016-03-29 02:01 - 2012-07-25 01:58 - 00000000 ____D C:\Users\Mesh\AppData\Roaming\Adobe-Backup 2016-03-26 03:28 - 2013-10-20 23:24 - 00000000 ____D C:\ProgramData\Oracle 2016-03-26 03:26 - 2014-01-22 00:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2016-03-26 03:26 - 2013-03-10 16:32 - 00000000 ____D C:\Program Files (x86)\Java 2016-03-26 03:25 - 2015-08-27 23:33 - 00000000 ____D C:\Users\Mesh\.oracle_jre_usage 2016-03-26 03:25 - 2014-01-22 00:05 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2016-03-25 05:35 - 2015-10-05 16:48 - 00000000 ____D C:\Program Files (x86)\Brackets 2016-03-25 05:31 - 2012-07-24 20:28 - 00000000 ____D C:\Users\Mesh 2016-03-21 23:29 - 2016-03-17 01:22 - 00000000 ____D C:\Users\Mesh\AppData\Local\NFS Underground 2 2016-03-21 02:26 - 2015-09-26 11:07 - 00000000 ____D C:\Users\Mesh\Desktop\Old Firefox Data 2016-03-20 05:05 - 2015-09-27 18:03 - 00002636 _____ C:\Users\Mesh\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk ==================== Files in the root of some directories ======= 2012-08-18 01:58 - 2012-08-18 01:58 - 0893936 _____ (Oracle Corporation) C:\Program Files\chromeinstall-7u5.exe 2013-03-11 20:30 - 2013-03-11 20:30 - 0000132 _____ () C:\Users\Mesh\AppData\Roaming\Adobe GIF Format CS6 Prefs 2016-04-05 12:15 - 2016-03-31 06:55 - 0000034 _____ () C:\Users\Mesh\AppData\Roaming\AdobeWLCMCache.dat 2012-07-25 00:47 - 2015-12-29 06:24 - 0007597 _____ () C:\Users\Mesh\AppData\Local\Resmon.ResmonCfg 2016-03-23 06:48 - 2016-03-23 16:33 - 0004290 _____ () C:\Users\Mesh\AppData\Local\Snip.txt 2016-03-23 06:55 - 2016-03-23 16:33 - 0001294 _____ () C:\Users\Mesh\AppData\Local\SnipUsages.txt Some files in TEMP: ==================== C:\Users\Mesh\AppData\Local\Temp\KMP_4.0.6.4.exe ==================== Bamital & volsnap ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2016-04-08 19:22 ==================== End of FRST.txt ============================ Pre mesec dana sam ovde prijavio pojavljivanje plave ikonice u donjem levom uglu ekrana, prilikom starta, na kojoj piše H2O. Jedan od admina mi je odgovorio da je to moj sistem i da je sve ok. I dalje sam poprilično siguran da se to ranije nije pojavljivalo. Prosto bih zapazio, imam dobro foto pamćenje. ps jedva uspevam da napišem poruku, jer se svakomalo gasi. Hvala. [Link mogu videti samo ulogovani korisnici]

Profil

return void Poslao: 19 Apr 2016 17:52 Idi na vrh
offline return void Anti Malware Fighter Rank 1 Pridružio: 02 Jan 2008 Poruke: 2167	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Malver definitivno nije uzrok problema koji imas. Najverovatnije je to pregrejavanje (prasina itd.), pa ti savetujem da otvoris temu u Windows/Hardver delu i tamo potrazis pomoc. Mozda bi na kraju svega bilo najbolje da laptop odneses u servis da ti detaljno pregledaju komponente i kazu ti sta nije u redu. Ambulanta se bavi samo problemima sa malverom a ti takvih problema nemas Za kraj, izvrsi ovo skeniranje kako bi uklonili alate koje smo koristili ovde i to bi bilo to. • Sledeća procedura će implementirati završno čišćenje. Preuzmi "Xplode"-ov DelFix alat i snimi ga na Desktop. Dvoklikom pokreni alat i štikliraj kućice ispred sledećih opcija; Remove disinfection tools Create registry backup Purge System Restore Klikni na dugme Run i pričekaj trenutak dok alat ne završi svoj rad. Od ovog trenutka, svi korišćeni alati u ovoj temi bi trebali biti obrisani. Ukoliko neki alat ili izveštaj nije uklonjen, slobodno ih obriši ručno. Alat će takođe formirati izveštaj za tebe. (C:\DelFix.txt) - Alat će snimiti i zdravo stanje registy-ja i napraviti backup koristeci integrisan program "ERUNT" u %windir%\ERUNT\DelFix - DelFix briše stare system restore tačke i pravi novu, svežu tačku nakon čišćenja.

Profil

crno dete Poslao: 20 Apr 2016 00:54 Idi na vrh
offline crno dete Novi MyCity građanin Pridružio: 14 Avg 2015 Poruke: 25	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! U redu. Uradio sam tako. Danas sam se setio da sam pre neki dan, na predlog prijatelja skinuo fajl sa sajta: air(zabranjeno)-ng.org, i pokrenuo .exe file. Nakon dvoklika se na blic pojavio prozor: cmd.exe fajla. Pošto sam video da se ništa ne dešava, potražio sam na sajtu uputstvo i video da je džaba pokušavati na widows-u, te da trebam kali linux za te akcije. Ne znam, još jedino to može da bude razlog. Hvala još jedared

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Računar se gasi

Ko je trenutno na forumu

Ukupno su 1409 korisnika na forumu :: 152 registrovanih, 10 sakrivenih i 1247 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 6018 - dana 19 Dec 2025 13:41

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: 04bokibole, A.R.Chafee.Jr., alberto, AleksandarFKS, alexbr, Antoni S, Apok, AS, Asteker, babaroga, Banovo Brdo, Bickoooo, blatruc82, bojan581, bojan_t, Bokiboks, borya90, Bosnjo, bozo13, Bubili, BZ, CCCP, Cicumile, CikaKURE, Ciri1994, cojapop, cuvarkuca, Cvijo_ue, d.arsenal321, darkojbn, Dekanovic, desmeki, djboj, draganl, drgrozozo, DrNeoCortex, dskrlec33, dukajov, Ercomero, eulereix, EXIT78, feanor, Fructo, Futog 74, GeoM, Georgius, Giskard, Glauber, goxin, Great White, Hans Gajger, Hardenberg, hooraay, HrcAk47, hyla, Imperator_Aleksandr_lll, In_hero, indja, IpMan, ivan1973, Jablan, Jan, jeen yuhs, jimi_agf, Joint Chief, K-1A, Karaula, keyz, kikisp, klepesina, kNikS, Kozara1, Kubovac, kybonacci, lafa008, laurusri, LostInSpaceandTime, Lucije Kvint, lukisa, Magistar78, Md84, Mickey91, mikrimaus, Milan A. Nikolic, Milan1996, milan47, milanovic, Miler88, MiroslavD, Miškić, Moldovan, mrgud2025, Murko, Ndsk, nebidrag, nekdo, nemkea71, nenad81, nenooo, nick79, NikMilitari, niksa517, nnnnnnnnnn, Nobunaga, Nomica, omen, Pale2025, Pantaaa, Pantelejmon, pavle_pzs, pedja.st, Pekman, pisac12, Podljub, Povratak1912, proka89, Radio operater, raketaš, Ray1973, Remain, ruger357, samojednoimeznam, Sharpshooter, Sir Budimir, Sirius, skok, sluga, Smiljkovich, Sretko, sspp, stalja, Stanlio, Stefan M, Tribal, trutcina, uljmanac, Uros Cuore Sportivo, US_Rank_0, v82, veljko82, vensla, VJ, volimpivuvolimrakiju, W123, Wepp, WhiteTree, yagosh, yufighter, Zandar, zeo, ZetaMan, Zoran1959

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by