Usporeno surfovanje netom

Usporeno surfovanje netom

offline
  • Pridružio: 15 Avg 2009
  • Poruke: 654
  • Gde živiš: Cuprija

Napisano: 11 Jul 2016 21:29

Pozdrav, javio mi se problem od skoro, verovatno sam pokupio neki virus. Dakle dosta mi je usporeno surfovanje netom. Najvise primecujem usporenje prilikom skrolovanja web stranica. Obrisao sam sve extenzije chroma, ali je problem i dalje tu. Evo loga, nadam se da mozete da mi pomognete. Hvala unapred!

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 10-07-2016 01
Ran by Marko (administrator) on DESKTOP-TGMSIBL (11-07-2016 21:24:48)
Running from C:\Users\nikol\Downloads
Loaded Profiles: Marko (Available Profiles: Marko)
Platform: Windows 10 Pro Version 1511 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
() C:\Program Files (x86)\Common Files\Materialise\LicenseFiles6\LicSrv60.exe
(Popcorn Time) C:\Program Files (x86)\Popcorn Time\Updater.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(TorrentsTime) C:\Program Files (x86)\TorrentsTime Media Player\bin\TTService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
() C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(MyCity) C:\Program Files (x86)\MCShield\MCShieldRTM.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\cnext.exe [4866760 2015-11-29] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [56080 2015-12-12] (Raptr, Inc)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595992 2016-03-20] (Oracle Corporation)
HKU\S-1-5-21-851539225-3765377434-3566518437-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2851408 2016-07-09] (Valve Corporation)
HKU\S-1-5-21-851539225-3765377434-3566518437-1001\...\Run: [MCShield Monitor] => C:\Program Files (x86)\MCShield\mcshieldrtm.exe [650816 2014-04-11] (MyCity)
HKU\S-1-5-21-851539225-3765377434-3566518437-1001\...\Run: [apogesvev9854] => C:\Users\nikol\AppData\Roaming\Rando9203\database\bin\protect\config\navigator\version\version\builder\scripts9021\apogesvev9854.vbs [476682 2016-02-08] ()
HKU\S-1-5-21-851539225-3765377434-3566518437-1001\...\Run: [csrnewver3496] => C:\Users\nikol\AppData\Roaming\Cigna201602081435\informer\data\database\database\version\files\document\soft\tmp\optimizer7695\csrnewver3496.vbs [398403 2016-02-08] ()
HKU\S-1-5-21-851539225-3765377434-3566518437-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50599552 2016-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-851539225-3765377434-3566518437-1001\...\Run: [vartopnew3807] => C:\Users\nikol\AppData\Roaming\DTESoftware201602291850\updater\local\document\document\bin\builder\navigator\files\updates\database\apps\database8011\vartopnew3807.vbs [214282 2016-02-29] ()
HKU\S-1-5-21-851539225-3765377434-3566518437-1001\...\MountPoints2: {ed8a0eaf-9f6c-11e5-b375-001fd09bee98} - "D:\setup.exe"
Startup: C:\Users\nikol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\reload.vbs [2016-03-02] ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 89.216.1.40 89.216.1.50
Tcpip\..\Interfaces\{cf73f44e-c06c-40a4-8416-91f6c7d90145}: [DhcpNameServer] 89.216.1.40 89.216.1.50

Internet Explorer:
==================
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_77\bin\ssv.dll [2016-03-28] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-03-28] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2016-05-17] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2016-05-17] (Microsoft Corporation)

Edge:
======
Edge Session Restore: HKU\S-1-5-21-851539225-3765377434-3566518437-1001 -> is enabled.

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-03-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-03-28] (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.)
FF Plugin-x32: @verimatrix.com/ViewRightWeb -> C:\Program Files (x86)\Verimatrix\ViewRight Web\\npViewRight.dll [2015-04-06] (Verimatrix, Inc.)
FF Plugin HKU\S-1-5-21-851539225-3765377434-3566518437-1001: @verimatrix.com/ViewRightWeb -> C:\Program Files (x86)\Verimatrix\ViewRight Web\\npViewRight.dll [2015-04-06] (Verimatrix, Inc.)
FF Plugin HKU\S-1-5-21-851539225-3765377434-3566518437-1001: torrents-time.com/TTPlugin -> C:\Program Files (x86)\TorrentsTime Media Player\bin\npTTPlugin.dll [2016-02-15] (Torrents Time)

Chrome:
=======
CHR StartupUrls: Default -> ""
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\nikol\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\nikol\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-15]
CHR Extension: (YouTube) - C:\Users\nikol\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-15]
CHR Extension: (Google Search) - C:\Users\nikol\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-15]
CHR Extension: (AdBlock) - C:\Users\nikol\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-07-05]
CHR Extension: (Chrome Web Store Payments) - C:\Users\nikol\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-04]
CHR Extension: (Gmail) - C:\Users\nikol\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-15]
CHR HKU\S-1-5-21-851539225-3765377434-3566518437-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - hxxp://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [138752 2015-11-29] () [File not signed]
R2 MatLocalLicenceServer60; C:\Program Files (x86)\Common Files\Materialise\LicenseFiles6\LicSrv60.exe [647168 2013-08-13] () [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6942480 2016-03-02] (TeamViewer GmbH)
R2 TTService; C:\Program Files (x86)\TorrentsTime Media Player\bin\TTService.exe [3543576 2016-02-16] (TorrentsTime)
R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2015-10-19] (Popcorn Time) [File not signed]
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [40720 2015-07-28] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102912 2015-09-18] (Advanced Micro Devices)
S3 dtultrascsibus; C:\Windows\System32\drivers\dtultrascsibus.sys [30264 2015-12-11] (Disc Soft Ltd)
S3 dtultrausbbus; C:\Windows\System32\drivers\dtultrausbbus.sys [47160 2015-12-11] (Disc Soft Ltd)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-03-23] (Malwarebytes)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek )
R1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [117768 2016-01-19] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [194976 2016-01-19] (Oracle Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-11 21:24 - 2016-07-11 21:25 - 00012434 _____ C:\Users\nikol\Downloads\FRST.txt
2016-07-11 21:24 - 2016-07-11 21:24 - 00000000 ____D C:\FRST
2016-07-11 21:23 - 2016-07-11 21:24 - 02390528 _____ (Farbar) C:\Users\nikol\Downloads\FRST64.exe
2016-07-11 20:49 - 2016-07-11 20:49 - 60876068 _____ C:\Users\nikol\Downloads\com.nianticlabs.pokemongo_0.29.0-2016070500_minAPI19(armeabi-v7a)(nodpi)_apkmirror.com.apk
2016-07-04 19:37 - 2016-07-04 19:37 - 05371349 _____ C:\Users\nikol\Downloads\final.rar
2016-07-03 21:07 - 2016-07-03 21:07 - 00000000 ____D C:\Users\nikol\Downloads\krajorder
2016-07-03 21:06 - 2016-07-03 21:06 - 00337507 _____ C:\Users\nikol\Downloads\krajorder.zip
2016-07-03 20:24 - 2016-07-03 20:24 - 00017908 _____ C:\Users\nikol\Downloads\Quantico - 01x13 - Clear HDTV x264 BS.rar
2016-07-03 20:03 - 2016-07-03 20:04 - 00000000 ____D C:\Users\nikol\Downloads\Quantico.S01E13.720p.HDTV.X264-DIMENSION[rarbg]
2016-07-03 17:01 - 2016-07-03 17:01 - 00000000 ____D C:\Users\nikol\Downloads\Quantico.S01E12.720p.HDTV.x264-KILLERS[ettv]
2016-07-03 16:59 - 2016-07-03 16:59 - 00000000 ____D C:\Users\nikol\Downloads\Quantico.S01E12.HDTV.x264-KILLERS[ettv]
2016-07-03 16:28 - 2016-07-03 16:28 - 00017107 _____ C:\Users\nikol\Downloads\Quantico - 01x12 - Alex HDTV x264 BS.rar
2016-07-03 16:24 - 2016-07-03 17:01 - 00000000 ____D C:\Users\nikol\Downloads\Quantico.S01E12.720p.HDTV.x264-KILLERS[rarbg]
2016-07-03 15:54 - 2016-07-03 15:54 - 00019510 _____ C:\Users\nikol\Downloads\Quantico - 01x11 - Inside HDTV x264 BS.rar
2016-07-03 15:42 - 2016-07-03 15:46 - 00000000 ____D C:\Users\nikol\Downloads\Quantico.S01E11.HDTV.x264-LOL[rarbg]
2016-07-02 18:56 - 2016-07-02 19:19 - 00537850 _____ C:\Users\nikol\Downloads\orderbootstrap (1).rar
2016-07-02 18:37 - 2016-07-02 18:37 - 00268630 _____ C:\Users\nikol\Downloads\orderbootstrap.rar
2016-06-30 19:32 - 2016-06-30 19:32 - 00006651 _____ C:\Users\nikol\Downloads\html_table.class.php
2016-06-30 19:31 - 2016-06-30 19:31 - 00004359 _____ C:\Users\nikol\Downloads\html_form.class.php
2016-06-30 19:03 - 2016-06-30 19:03 - 00006859 _____ C:\Users\nikol\Downloads\ex1.inc.php
2016-06-30 18:56 - 2016-06-30 18:56 - 00003584 _____ C:\Users\nikol\Downloads\order_form.tar
2016-06-30 18:56 - 2016-06-30 18:30 - 00001794 _____ C:\Users\nikol\Desktop\order_form.js
2016-06-30 12:05 - 2016-06-30 12:05 - 00000000 ____H C:\ProgramData\cm-lock
2016-06-29 18:22 - 2016-06-29 18:22 - 05431072 _____ C:\Users\nikol\Downloads\biznis.zip
2016-06-29 18:22 - 2016-06-29 18:22 - 00000000 ____D C:\Users\nikol\Desktop\biznis
2016-06-27 21:07 - 2016-06-27 21:07 - 00014050 _____ C:\Users\nikol\Downloads\Game of Thrones - 06x10 - The Winds of Winter 720p HR.rar
2016-06-26 22:49 - 2016-06-26 22:49 - 00923136 _____ C:\Users\nikol\Downloads\ClipSyncServer3.msi
2016-06-23 18:43 - 2016-06-23 18:43 - 00011963 _____ C:\Users\nikol\Downloads\Person of Interest - 05x13 - return 0 HDTV x264 BS.rar
2016-06-21 18:39 - 2016-06-21 18:39 - 00014566 _____ C:\Users\nikol\Downloads\Person of Interest - 05x12 - .exe HDTV x264 BS.rar
2016-06-21 17:22 - 2016-06-21 17:22 - 00015584 _____ C:\Users\nikol\Downloads\Person of Interest - 05x11 - Synecdoche HDTV x264 BS.rar
2016-06-21 16:31 - 2016-06-21 16:31 - 00011871 _____ C:\Users\nikol\Downloads\Person of Interest - 05x10 - The Day The World Went Away HDTV x264 BS.rar
2016-06-21 14:44 - 2016-06-21 14:44 - 00013685 _____ C:\Users\nikol\Downloads\Person of Interest - 05x09 - Sotto Voce HDTV x264 BS.rar
2016-06-21 13:57 - 2016-06-21 13:57 - 00015554 _____ C:\Users\nikol\Downloads\Person of Interest - 05x08 - Reassortment HDTV x264 BS.rar
2016-06-21 12:53 - 2016-06-21 12:53 - 00016991 _____ C:\Users\nikol\Downloads\Person of Interest - 05x07 - QSO HDTV x264 BS.rar
2016-06-20 16:41 - 2016-06-20 16:41 - 00008263 _____ C:\Users\nikol\Downloads\Game of Thrones - 06x09 - The Battle of Bastards HDTV x264 HR.rar
2016-06-18 14:50 - 2016-06-18 14:55 - 00000000 ____D C:\lisaTm
2016-06-18 14:44 - 2016-06-18 14:44 - 00457088 _____ C:\Users\nikol\Downloads\International-Trade-Theory-and-Policy.202-209.pdf
2016-06-18 14:27 - 2016-06-18 14:27 - 04409271 _____ C:\Users\nikol\Downloads\International-Trade-Theory-and-Policy (1).pdf
2016-06-17 21:18 - 2016-06-17 21:18 - 04409271 _____ C:\Users\nikol\Downloads\International-Trade-Theory-and-Policy.pdf
2016-06-16 23:11 - 2016-06-16 23:11 - 00000057 _____ C:\Users\nikol\.gitconfig
2016-06-16 23:11 - 2016-06-16 23:11 - 00000000 ____D C:\Users\nikol\Desktop\gitRepo
2016-06-16 20:57 - 2016-06-16 20:59 - 00000000 ____D C:\Users\nikol\gitfolder
2016-06-16 20:09 - 2016-06-16 20:09 - 00015788 _____ C:\Users\nikol\Downloads\Person of Interest - 05x06 - A More Perfect Union HDTV x264 BS.rar
2016-06-15 21:46 - 2016-06-15 21:46 - 00014481 _____ C:\Users\nikol\Downloads\simpleks.xlsx
2016-06-15 20:15 - 2016-06-15 20:15 - 00014114 _____ C:\Users\nikol\Downloads\Game of Thrones - 06x08 - No One 1080p SR (1).rar
2016-06-14 20:21 - 2016-05-28 08:13 - 01401024 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-06-14 20:21 - 2016-05-28 08:13 - 00046784 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-06-14 20:21 - 2016-05-28 07:07 - 00808288 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2016-06-14 20:21 - 2016-05-28 07:07 - 00703840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2016-06-14 20:21 - 2016-05-28 06:58 - 00379232 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-06-14 20:21 - 2016-05-28 06:57 - 01594416 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-06-14 20:21 - 2016-05-28 06:57 - 01372312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-06-14 20:21 - 2016-05-28 06:57 - 00636304 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2016-06-14 20:21 - 2016-05-28 06:57 - 00546456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2016-06-14 20:21 - 2016-05-28 06:57 - 00316256 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-06-14 20:21 - 2016-05-28 06:35 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\tdlrecover.exe
2016-06-14 20:21 - 2016-05-28 06:35 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\MapsCSP.dll
2016-06-14 20:21 - 2016-05-28 06:31 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\MosHostClient.dll
2016-06-14 20:21 - 2016-05-28 06:29 - 22379008 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2016-06-14 20:21 - 2016-05-28 06:29 - 00045568 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-06-14 20:21 - 2016-05-28 06:28 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-06-14 20:21 - 2016-05-28 06:27 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MosHostClient.dll
2016-06-14 20:21 - 2016-05-28 06:27 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\mapsupdatetask.dll
2016-06-14 20:21 - 2016-05-28 06:26 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\MapsBtSvc.dll
2016-06-14 20:21 - 2016-05-28 06:26 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\MosStorage.dll
2016-06-14 20:21 - 2016-05-28 06:24 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\moshost.dll
2016-06-14 20:21 - 2016-05-28 06:22 - 00269824 _____ (Microsoft Corporation) C:\Windows\system32\moshostcore.dll
2016-06-14 20:21 - 2016-05-28 06:22 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapsBtSvc.dll
2016-06-14 20:21 - 2016-05-28 06:22 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MosStorage.dll
2016-06-14 20:21 - 2016-05-28 06:19 - 24605696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-06-14 20:21 - 2016-05-28 06:18 - 11545088 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2016-06-14 20:21 - 2016-05-28 06:18 - 07977472 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll
2016-06-14 20:21 - 2016-05-28 06:18 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll
2016-06-14 20:21 - 2016-05-28 06:17 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\MessagingDataModel2.dll
2016-06-14 20:21 - 2016-05-28 06:15 - 01056256 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll
2016-06-14 20:21 - 2016-05-28 06:15 - 00853504 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll
2016-06-14 20:21 - 2016-05-28 06:15 - 00349696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll
2016-06-14 20:21 - 2016-05-28 06:14 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\NMAA.dll
2016-06-14 20:21 - 2016-05-28 06:14 - 00606208 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-06-14 20:21 - 2016-05-28 06:14 - 00499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MessagingDataModel2.dll
2016-06-14 20:21 - 2016-05-28 06:13 - 00939520 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll
2016-06-14 20:21 - 2016-05-28 06:12 - 00800768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll
2016-06-14 20:21 - 2016-05-28 06:11 - 00784896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NMAA.dll
2016-06-14 20:21 - 2016-05-28 06:11 - 00711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapControlCore.dll
2016-06-14 20:21 - 2016-05-28 06:11 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-06-14 20:21 - 2016-05-28 06:08 - 13385728 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-06-14 20:21 - 2016-05-28 06:08 - 06295552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
2016-06-14 20:21 - 2016-05-28 06:06 - 07200256 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2016-06-14 20:21 - 2016-05-28 06:04 - 06973952 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2016-06-14 20:21 - 2016-05-28 06:03 - 05205504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2016-06-14 20:21 - 2016-05-28 06:03 - 02609664 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2016-06-14 20:21 - 2016-05-28 06:00 - 03585536 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-06-14 20:21 - 2016-05-28 06:00 - 01707520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActiveSyncProvider.dll
2016-06-14 20:21 - 2016-05-28 05:58 - 01996288 _____ (Microsoft Corporation) C:\Windows\system32\ActiveSyncProvider.dll
2016-06-14 20:20 - 2016-05-28 08:13 - 01184960 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-06-14 20:20 - 2016-05-28 08:13 - 00514752 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-06-14 20:20 - 2016-05-28 08:13 - 00290496 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-06-14 20:20 - 2016-05-28 08:13 - 00092352 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-06-14 20:20 - 2016-05-28 07:25 - 04268880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll
2016-06-14 20:20 - 2016-05-28 07:23 - 00388384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll
2016-06-14 20:20 - 2016-05-28 07:23 - 00312160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2016-06-14 20:20 - 2016-05-28 07:22 - 07474528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-06-14 20:20 - 2016-05-28 07:22 - 04387680 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2016-06-14 20:20 - 2016-05-28 07:22 - 00428896 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2016-06-14 20:20 - 2016-05-28 07:22 - 00211296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2016-06-14 20:20 - 2016-05-28 07:22 - 00118624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2016-06-14 20:20 - 2016-05-28 07:20 - 00430312 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2016-06-14 20:20 - 2016-05-28 07:18 - 00357216 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2016-06-14 20:20 - 2016-05-28 07:16 - 00026408 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-06-14 20:20 - 2016-05-28 07:09 - 00501600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll
2016-06-14 20:20 - 2016-05-28 07:09 - 00170848 _____ (Microsoft Corporation) C:\Windows\system32\NetworkUXBroker.exe
2016-06-14 20:20 - 2016-05-28 07:09 - 00084832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupApi.dll
2016-06-14 20:20 - 2016-05-28 07:08 - 00693600 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll
2016-06-14 20:20 - 2016-05-28 07:08 - 00258912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ufx01000.sys
2016-06-14 20:20 - 2016-05-28 07:08 - 00115040 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll
2016-06-14 20:20 - 2016-05-28 07:07 - 03675512 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-06-14 20:20 - 2016-05-28 07:07 - 02921880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-06-14 20:20 - 2016-05-28 07:07 - 01322248 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-06-14 20:20 - 2016-05-28 07:07 - 00957608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-06-14 20:20 - 2016-05-28 07:07 - 00331616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2016-06-14 20:20 - 2016-05-28 07:06 - 22561256 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-06-14 20:20 - 2016-05-28 07:06 - 04074160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-06-14 20:20 - 2016-05-28 07:06 - 00730344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2016-06-14 20:20 - 2016-05-28 07:06 - 00303216 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe
2016-06-14 20:20 - 2016-05-28 07:06 - 00254656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppHost.exe
2016-06-14 20:20 - 2016-05-28 07:05 - 04515264 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-06-14 20:20 - 2016-05-28 07:04 - 00604928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-06-14 20:20 - 2016-05-28 07:04 - 00431296 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2016-06-14 20:20 - 2016-05-28 07:04 - 00360480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2016-06-14 20:20 - 2016-05-28 07:04 - 00161632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-06-14 20:20 - 2016-05-28 07:04 - 00111064 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2016-06-14 20:20 - 2016-05-28 07:04 - 00097096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2016-06-14 20:20 - 2016-05-28 07:03 - 00131248 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2016-06-14 20:20 - 2016-05-28 06:58 - 01996640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-06-14 20:20 - 2016-05-28 06:57 - 02548944 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2016-06-14 20:20 - 2016-05-28 06:57 - 02195632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2016-06-14 20:20 - 2016-05-28 06:57 - 00649792 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2016-06-14 20:20 - 2016-05-28 06:57 - 00577376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2016-06-14 20:20 - 2016-05-28 06:57 - 00521664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2016-06-14 20:20 - 2016-05-28 06:35 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsdport.sys
2016-06-14 20:20 - 2016-05-28 06:31 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdlrecover.exe
2016-06-14 20:20 - 2016-05-28 06:31 - 00088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2016-06-14 20:20 - 2016-05-28 06:29 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\adhsvc.dll
2016-06-14 20:20 - 2016-05-28 06:29 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\httpprxp.dll
2016-06-14 20:20 - 2016-05-28 06:28 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2016-06-14 20:20 - 2016-05-28 06:28 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2016-06-14 20:20 - 2016-05-28 06:26 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2016-06-14 20:20 - 2016-05-28 06:26 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\dmcertinst.exe
2016-06-14 20:20 - 2016-05-28 06:26 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe
2016-06-14 20:20 - 2016-05-28 06:25 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll
2016-06-14 20:20 - 2016-05-28 06:25 - 00037376 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-06-14 20:20 - 2016-05-28 06:24 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-06-14 20:20 - 2016-05-28 06:24 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Ndu.sys
2016-06-14 20:20 - 2016-05-28 06:24 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-06-14 20:20 - 2016-05-28 06:24 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2016-06-14 20:20 - 2016-05-28 06:24 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\AppCapture.dll
2016-06-14 20:20 - 2016-05-28 06:24 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2016-06-14 20:20 - 2016-05-28 06:24 - 00053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll
2016-06-14 20:20 - 2016-05-28 06:23 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2016-06-14 20:20 - 2016-05-28 06:23 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2016-06-14 20:20 - 2016-05-28 06:22 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2016-06-14 20:20 - 2016-05-28 06:22 - 00368640 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2016-06-14 20:20 - 2016-05-28 06:22 - 00278528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2016-06-14 20:20 - 2016-05-28 06:22 - 00163328 _____ (Microsoft Corporation) C:\Windows\system32\tetheringservice.dll
2016-06-14 20:20 - 2016-05-28 06:22 - 00161280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgent.exe
2016-06-14 20:20 - 2016-05-28 06:22 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-06-14 20:20 - 2016-05-28 06:21 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2016-06-14 20:20 - 2016-05-28 06:21 - 00239104 _____ (Microsoft Corporation) C:\Windows\system32\BrokerLib.dll
2016-06-14 20:20 - 2016-05-28 06:21 - 00207360 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll
2016-06-14 20:20 - 2016-05-28 06:21 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2016-06-14 20:20 - 2016-05-28 06:21 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.dll
2016-06-14 20:20 - 2016-05-28 06:20 - 00641536 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2016-06-14 20:20 - 2016-05-28 06:20 - 00511488 _____ (Microsoft Corporation) C:\Windows\system32\newdev.dll
2016-06-14 20:20 - 2016-05-28 06:20 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2016-06-14 20:20 - 2016-05-28 06:20 - 00267264 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2016-06-14 20:20 - 2016-05-28 06:20 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\GnssAdapter.dll
2016-06-14 20:20 - 2016-05-28 06:20 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Privacy.dll
2016-06-14 20:20 - 2016-05-28 06:20 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2016-06-14 20:20 - 2016-05-28 06:19 - 00764928 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2016-06-14 20:20 - 2016-05-28 06:19 - 00567808 _____ (Microsoft Corporation) C:\Windows\system32\MBMediaManager.dll
2016-06-14 20:20 - 2016-05-28 06:19 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvr.exe
2016-06-14 20:20 - 2016-05-28 06:19 - 00355840 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2016-06-14 20:20 - 2016-05-28 06:19 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll
2016-06-14 20:20 - 2016-05-28 06:18 - 00678912 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2016-06-14 20:20 - 2016-05-28 06:18 - 00610816 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2016-06-14 20:20 - 2016-05-28 06:18 - 00591360 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2016-06-14 20:20 - 2016-05-28 06:18 - 00392192 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2016-06-14 20:20 - 2016-05-28 06:18 - 00380416 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2016-06-14 20:20 - 2016-05-28 06:18 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\VEEventDispatcher.dll
2016-06-14 20:20 - 2016-05-28 06:17 - 09918976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2016-06-14 20:20 - 2016-05-28 06:17 - 00963072 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2016-06-14 20:20 - 2016-05-28 06:17 - 00485888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.dll
2016-06-14 20:20 - 2016-05-28 06:17 - 00415232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StoreAgent.dll
2016-06-14 20:20 - 2016-05-28 06:17 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\RDXTaskFactory.dll
2016-06-14 20:20 - 2016-05-28 06:17 - 00278016 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2016-06-14 20:20 - 2016-05-28 06:17 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\mdmmigrator.dll
2016-06-14 20:20 - 2016-05-28 06:16 - 19344384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-06-14 20:20 - 2016-05-28 06:16 - 00690176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2016-06-14 20:20 - 2016-05-28 06:16 - 00684544 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2016-06-14 20:20 - 2016-05-28 06:16 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\AppContracts.dll
2016-06-14 20:20 - 2016-05-28 06:16 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\tileobjserver.dll
2016-06-14 20:20 - 2016-05-28 06:16 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2016-06-14 20:20 - 2016-05-28 06:16 - 00291328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll
2016-06-14 20:20 - 2016-05-28 06:16 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2016-06-14 20:20 - 2016-05-28 06:15 - 00794624 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2016-06-14 20:20 - 2016-05-28 06:15 - 00579072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2016-06-14 20:20 - 2016-05-28 06:15 - 00535040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2016-06-14 20:20 - 2016-05-28 06:15 - 00293888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2016-06-14 20:20 - 2016-05-28 06:15 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2016-06-14 20:20 - 2016-05-28 06:14 - 18674176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2016-06-14 20:20 - 2016-05-28 06:14 - 01716736 _____ (Microsoft Corporation) C:\Windows\system32\SRHInproc.dll
2016-06-14 20:20 - 2016-05-28 06:14 - 00965632 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2016-06-14 20:20 - 2016-05-28 06:14 - 00784384 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-06-14 20:20 - 2016-05-28 06:14 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEEventDispatcher.dll
2016-06-14 20:20 - 2016-05-28 06:14 - 00200192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2016-06-14 20:20 - 2016-05-28 06:13 - 01387520 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2016-06-14 20:20 - 2016-05-28 06:13 - 00990208 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll
2016-06-14 20:20 - 2016-05-28 06:13 - 00982016 _____ (Microsoft Corporation) C:\Windows\system32\AppxPackaging.dll
2016-06-14 20:20 - 2016-05-28 06:13 - 00587776 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2016-06-14 20:20 - 2016-05-28 06:13 - 00467456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppContracts.dll
2016-06-14 20:20 - 2016-05-28 06:12 - 00614400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2016-06-14 20:20 - 2016-05-28 06:12 - 00521728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2016-06-14 20:20 - 2016-05-28 06:11 - 01445888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRHInproc.dll
2016-06-14 20:20 - 2016-05-28 06:11 - 00890368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxPackaging.dll
2016-06-14 20:20 - 2016-05-28 06:11 - 00799744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2016-06-14 20:20 - 2016-05-28 06:11 - 00687616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-06-14 20:20 - 2016-05-28 06:11 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\httpprxm.dll
2016-06-14 20:20 - 2016-05-28 06:09 - 01073152 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2016-06-14 20:20 - 2016-05-28 06:06 - 12128256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-06-14 20:20 - 2016-05-28 06:06 - 01339904 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2016-06-14 20:20 - 2016-05-28 06:05 - 03994624 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2016-06-14 20:20 - 2016-05-28 06:05 - 03664896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-06-14 20:20 - 2016-05-28 06:05 - 02582016 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2016-06-14 20:20 - 2016-05-28 06:05 - 01797120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2016-06-14 20:20 - 2016-05-28 06:04 - 00555520 _____ (Microsoft Corporation) C:\Windows\system32\SyncController.dll
2016-06-14 20:20 - 2016-05-28 06:04 - 00450560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncController.dll
2016-06-14 20:20 - 2016-05-28 06:03 - 05323776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2016-06-14 20:20 - 2016-05-28 06:03 - 01185280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationFramework.dll
2016-06-14 20:20 - 2016-05-28 06:03 - 00693760 _____ (Microsoft Corporation) C:\Windows\system32\internetmail.dll
2016-06-14 20:20 - 2016-05-28 06:03 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll
2016-06-14 20:20 - 2016-05-28 06:02 - 03590144 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2016-06-14 20:20 - 2016-05-28 06:02 - 02061824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2016-06-14 20:20 - 2016-05-28 06:02 - 01534464 _____ (Microsoft Corporation) C:\Windows\system32\LocationFramework.dll
2016-06-14 20:20 - 2016-05-28 06:02 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll
2016-06-14 20:20 - 2016-05-28 06:01 - 01799680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2016-06-14 20:20 - 2016-05-28 06:01 - 01582080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2016-06-14 20:20 - 2016-05-28 06:01 - 01500160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-06-14 20:20 - 2016-05-28 06:01 - 00111104 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
2016-06-14 20:20 - 2016-05-28 06:00 - 05660160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2016-06-14 20:20 - 2016-05-28 06:00 - 02635776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2016-06-14 20:20 - 2016-05-28 06:00 - 02230272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-06-14 20:20 - 2016-05-28 06:00 - 02168320 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2016-06-14 20:20 - 2016-05-28 06:00 - 01730560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-06-14 20:20 - 2016-05-28 06:00 - 00162816 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll
2016-06-14 20:20 - 2016-05-28 06:00 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll
2016-06-14 20:20 - 2016-05-28 06:00 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEnroller.exe
2016-06-14 20:20 - 2016-05-28 05:59 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll
2016-06-14 20:20 - 2016-05-28 05:58 - 07832576 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2016-06-14 20:20 - 2016-05-28 05:58 - 04896256 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-06-14 20:20 - 2016-05-28 05:58 - 02755584 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-06-14 20:20 - 2016-05-28 05:58 - 02066432 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2016-06-14 20:20 - 2016-05-28 05:57 - 02281472 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-06-14 20:20 - 2016-05-28 05:55 - 01390080 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Shell.dll
2016-06-14 20:20 - 2016-05-28 05:53 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\ngcpopkeysrv.dll
2016-06-14 18:38 - 2016-06-14 18:38 - 00014114 _____ C:\Users\nikol\Downloads\Game of Thrones - 06x08 - No One 1080p SR.rar
2016-06-13 22:31 - 2016-06-13 22:31 - 00026765 _____ C:\Users\nikol\Downloads\104338-Exam.2009.BDRip.XviDAVCDVD.zip
2016-06-12 21:02 - 2016-06-12 21:02 - 00016055 _____ C:\Users\nikol\Downloads\Person of Interest - 05x05 - ShotSeeker HDTV x264 BS.rar
2016-06-12 18:22 - 2016-06-12 18:22 - 00011226 _____ C:\Users\nikol\Downloads\Person of Interest - 05x04 - 6,741 HDTV x264 BS.rar
2016-06-12 17:29 - 2016-06-12 17:29 - 00014367 _____ C:\Users\nikol\Downloads\Person of Interest - 05x03 - Truth Be Told HDTV x264 BS.rar
2016-06-12 17:27 - 2016-06-12 17:27 - 00003948 _____ C:\Users\nikol\Downloads\meanstack.zip
2016-06-11 12:46 - 2016-06-11 12:46 - 00021967 _____ C:\Users\nikol\Downloads\mean1-master.zip
2016-06-11 12:26 - 2016-06-11 12:46 - 00000000 ____D C:\Users\nikol\Documents\MeanStackPDF
2016-06-11 12:24 - 2016-06-11 12:24 - 04388265 _____ C:\Users\nikol\Downloads\mean1pdf.zip

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-11 21:18 - 2016-02-18 20:00 - 00000068 __RSH C:\Windows\system32\Drivers\videoprt.winsecurity
2016-07-11 21:18 - 2016-02-17 19:49 - 00000068 __RSH C:\Windows\system32\Drivers\WpdUpFltr.winsecurity
2016-07-11 21:07 - 2015-12-15 18:51 - 00000938 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-11 20:43 - 2016-02-18 20:00 - 00000068 __RSH C:\Windows\system32\Drivers\xinputhid.winsecurity
2016-07-11 20:43 - 2016-02-17 19:49 - 00000068 __RSH C:\Windows\system32\Drivers\WdiWiFi.winsecurity
2016-07-11 18:34 - 2015-11-26 18:59 - 00000000 ____D C:\Program Files (x86)\Steam
2016-07-11 17:48 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\AppReadiness
2016-07-11 17:42 - 2015-12-15 18:40 - 00004166 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{E275BF3C-CCED-472D-A7C7-F3577C21EA3E}
2016-07-11 17:39 - 2015-12-15 18:51 - 00000934 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-11 17:39 - 2015-12-13 13:24 - 00000000 ____D C:\ProgramData\MCShield
2016-07-10 19:51 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-07-07 02:39 - 2015-11-25 23:38 - 00485032 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-07-03 21:27 - 2015-11-26 19:05 - 00000000 ____D C:\Users\nikol\AppData\Roaming\uTorrent
2016-07-02 11:30 - 2016-02-04 18:36 - 00000000 ____D C:\Users\nikol\AppData\Roaming\.minecraft
2016-06-30 19:37 - 2016-02-20 20:36 - 00000233 _____ C:\Users\nikol\Desktop\index.html
2016-06-30 12:11 - 2015-11-25 23:37 - 00879220 _____ C:\Windows\system32\PerfStringBackup.INI
2016-06-30 12:11 - 2015-10-30 09:21 - 00000000 ____D C:\Windows\INF
2016-06-30 12:05 - 2015-11-26 08:29 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-06-30 12:04 - 2015-10-30 08:28 - 00524288 ___SH C:\Windows\system32\config\BBI
2016-06-19 15:37 - 2015-12-10 18:38 - 00000000 ____D C:\Users\nikol\AppData\Roaming\ViberPC
2016-06-18 20:58 - 2016-03-28 20:37 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-06-18 16:31 - 2016-03-06 22:00 - 00000000 ____D C:\Users\nikol\AppData\Roaming\npm-cache
2016-06-18 16:26 - 2016-06-07 18:49 - 00000000 ____D C:\Users\nikol\meanstack
2016-06-18 16:25 - 2016-03-06 21:57 - 00000000 ____D C:\Users\nikol\AppData\Roaming\npm
2016-06-18 14:43 - 2016-05-31 22:12 - 00000000 ____D C:\Users\nikol\Wordfast4
2016-06-18 13:15 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\rescache
2016-06-18 10:08 - 2015-12-15 18:51 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-18 10:08 - 2015-12-15 18:51 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-06-18 00:31 - 2015-11-25 23:31 - 00000000 ____D C:\Users\nikol
2016-06-17 22:01 - 2015-10-30 09:11 - 00000000 ____D C:\Windows\CbsTemp
2016-06-16 20:09 - 2016-04-11 22:32 - 00000000 ____D C:\Program Files (x86)\JetBrains
2016-06-16 17:47 - 2016-03-06 21:51 - 00000144 _____ C:\Users\nikol\.node_repl_history
2016-06-16 17:16 - 2015-11-26 08:27 - 00348792 _____ C:\Windows\system32\FNTCACHE.DAT
2016-06-16 17:16 - 2015-11-25 23:32 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-06-15 23:30 - 2015-10-30 09:24 - 00000000 ___SD C:\Windows\system32\DiagSvcs
2016-06-15 23:30 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2016-06-15 23:30 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\bcastdvr
2016-06-14 20:53 - 2015-12-11 11:18 - 00000000 ____D C:\Windows\system32\MRT
2016-06-14 20:48 - 2015-12-11 11:18 - 142482544 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-06-14 20:33 - 2015-10-30 09:26 - 00828408 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-06-14 20:33 - 2015-10-30 09:26 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

==================== Files in the root of some directories =======

2016-06-30 12:05 - 2016-06-30 12:05 - 0000000 ____H () C:\ProgramData\cm-lock

Files to move or delete:
====================
C:\Users\nikol\.mongorc.js


Some files in TEMP:
====================
C:\Users\nikol\AppData\Local\Temp\DseShExt-x64.dll
C:\Users\nikol\AppData\Local\Temp\DseShExt-x86.dll
C:\Users\nikol\AppData\Local\Temp\GrLauncherTempSetup.exe
C:\Users\nikol\AppData\Local\Temp\i4jdel0.exe
C:\Users\nikol\AppData\Local\Temp\ICReinstall_pro_evolution_soccer.exe
C:\Users\nikol\AppData\Local\Temp\jansi-64-1.9.dll
C:\Users\nikol\AppData\Local\Temp\proxy_vole6137481811415641916.dll
C:\Users\nikol\AppData\Local\Temp\raptrpatch.exe
C:\Users\nikol\AppData\Local\Temp\raptr_stub.exe
C:\Users\nikol\AppData\Local\Temp\SDShelEx-win32.dll
C:\Users\nikol\AppData\Local\Temp\SDShelEx-x64.dll
C:\Users\nikol\AppData\Local\Temp\tmp1042.exe
C:\Users\nikol\AppData\Local\Temp\winp.x643420353306199682855.dll
C:\Users\nikol\AppData\Local\Temp\winp.x645194865511469107294.dll
C:\Users\nikol\AppData\Local\Temp\winp.x645561879655220622176.dll
C:\Users\nikol\AppData\Local\Temp\winp.x647649922587615417845.dll
C:\Users\nikol\AppData\Local\Temp\xmlUpdater.exe
C:\Users\nikol\AppData\Local\Temp\_is22BA.exe
C:\Users\nikol\AppData\Local\Temp\_is4AD4.exe
C:\Users\nikol\AppData\Local\Temp\_is6C0F.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-07-07 19:48

==================== End of FRST.txt ============================

Dopuna: 11 Jul 2016 21:31

Izgleda nisam lepo atachovao fajl, evo ga.
https://www.mycity.rs/must-login.png

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10621
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Arrow

Preporučujem ti da deinstaliraš Popcorn Time.



Arrow

Otvori Notepad i iskopiraj sljedeći tekst koji se nalazi unutar Kod polja.

CHR HKU\S-1-5-21-851539225-3765377434-3566518437-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - hxxp://clients2.google.com/service/update2/crx
AlternateDataStreams: C:\Windows:CM_3602b5888894f7c2c9bcf987309e4aec538daa29afd9592368cb7387be855235 [74]
AlternateDataStreams: C:\Windows:CM_4ae2ef5ec2ac583866116640279ab1479fd2473ff4553cb6722a2be6a6262fc6 [74]
AlternateDataStreams: C:\Windows:CM_6f929bb0500e1840e8896dfb719b244fd70db463eedc32b876c2bf2513df4cb0 [74]
AlternateDataStreams: C:\Windows:CM_8e111ff68c3e17d771500c7f18c569293fd6e1da89f9c4edd68031795bf356dc [74]
EmptyTemp:


U okviru Notepad-a klikni na File --> Save As
Fajl nazovi Fixlist i sačuvaj na Desktop
Dvoklikom ponovo pokreni FRST.exe
Klikni na Fix i sačekaj dok program ne završi.
Ukoliko program zatraži restart računara, omogući mu da to nesmetano obavi.
Nakon završetka rada, otvoriće se fixlog.txt, sa sadržajem koji treba da kopiraš u temu.
Takođe, na Desktop-u će se nalaziti (fixlog.txt).

offline
  • Pridružio: 15 Avg 2009
  • Poruke: 654
  • Gde živiš: Cuprija

Obrisao sam PopCorn, evo i loga.

Fix result of Farbar Recovery Scan Tool (x64) Version: 10-07-2016 01
Ran by Marko (2016-07-12 17:52:13) Run:1
Running from C:\Users\nikol\Downloads
Loaded Profiles: Marko (Available Profiles: Marko)
Boot Mode: Normal
==============================================

fixlist content:
*****************
CHR HKU\S-1-5-21-851539225-3765377434-3566518437-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - hxxp://clients2.google.com/service/update2/crx
AlternateDataStreams: C:\Windows:CM_3602b5888894f7c2c9bcf987309e4aec538daa29afd9592368cb7387be855235 [74]
AlternateDataStreams: C:\Windows:CM_4ae2ef5ec2ac583866116640279ab1479fd2473ff4553cb6722a2be6a6262fc6 [74]
AlternateDataStreams: C:\Windows:CM_6f929bb0500e1840e8896dfb719b244fd70db463eedc32b876c2bf2513df4cb0 [74]
AlternateDataStreams: C:\Windows:CM_8e111ff68c3e17d771500c7f18c569293fd6e1da89f9c4edd68031795bf356dc [74]
EmptyTemp:
*****************

"HKU\S-1-5-21-851539225-3765377434-3566518437-1001\SOFTWARE\Google\Chrome\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd" => key removed successfully
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd" => key removed successfully
C:\Windows => ":CM_3602b5888894f7c2c9bcf987309e4aec538daa29afd9592368cb7387be855235" ADS removed successfully.
C:\Windows => ":CM_4ae2ef5ec2ac583866116640279ab1479fd2473ff4553cb6722a2be6a6262fc6" ADS removed successfully.
C:\Windows => ":CM_6f929bb0500e1840e8896dfb719b244fd70db463eedc32b876c2bf2513df4cb0" ADS removed successfully.
C:\Windows => ":CM_8e111ff68c3e17d771500c7f18c569293fd6e1da89f9c4edd68031795bf356dc" ADS removed successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 1673726 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 236630583 B
Java, Flash, Steam htmlcache => 352983187 B
Windows/system/drivers => 91843695 B
Edge => 850380 B
Chrome => 712719717 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 6656 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 13258 B
nikol => 785976863 B

RecycleBin => 162561117 B
EmptyTemp: => 2.2 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 18:01:16 ====

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10621
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Stanje je i dalje isto, pretpostavljam?

offline
  • Pridružio: 15 Avg 2009
  • Poruke: 654
  • Gde živiš: Cuprija

Nisam bio pri racunaru pa nisam odgovorio do sad. Recimo da je malo bolje stanje, ali i dalje nije kao sto je bilo.

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10621
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Arrow Preuzmi instalaciju za Malwarebytes Anti-Malware (MBAM) ver.2.0 i instaliraj aplikaciju.
Dvoklik na mbam-setup.exe i prati uputstva za instalaciju. Instalacija je klasicna, "Next > I Agree . . > Next > Install" princip. Po zavrsenoj instalaciji, klikni Finish.
Napomena: 14 dana besplatna trail verzija je pre-selektovana. Mozes decekirati ovu opciju ako zelis.


- Po prvom pokretanju, MBAM ce zapoceti "Update" u nameri da preuzme najsvezije definicije.
Ili ... klik na 'Update Now >>' link ili dugme radi preuzimanja svezih definicija.

• Konfigurisati skener; Na 'Settings' tabu, Detection and Protection podesiti sledece opcije:
1. pod-tab Detection Options, cekirati kucicu za 'Scan for rootkits';
2. pod-tab Non-Malware Protection, za 'PUP detections', prostarati se da je selektovana 'Threat detections as malware' opcija.




• Izvrsiti 'Threat Scan';
Klik na Scan tab, zatim na 'Scan Now >>' da bi izvrsio skeniranje.
Ukoliko MBAM prijavi da je 'update' dostupan, klik na 'Update Now' a potom nastaviti do skeniranja.
Obavestenje: kod nekih teskih infekcija, moguce je dobiti sledecu poruku "Could not load DDA driver". U tom slucaju, klik Yes na tu poruku, dopustiti ucitavanje drajvera po restartu racunara, dozvoliti restart.
Potom, nastaviti sa ostatkom instrukcija.


• Po zavrsenom skeniranju, klik na Apply Action dugme ukoliko je pretnja detektovana. Sacekati da program zatrazi restart!
- Klik na Yes na poruku koja govori da ce se sistem restartovati.



• Postaviti izvestaj (export-ovati logfile) na uvid;
Ponovo pokrenuti MBAM, klik na History tab > Application Logs. Dvoklik na 'Scan Log' koji pokazuje vreme i datum upravo izvrsenog skeniranja.
1. U novom prozoru klik na 'Export' dugme, pa izabrati 'Text file (*.txt)';
2. Kada se pojavi Save File dialog, izabrati da se log sacuva na Desktop.
U tom istom prozoru, dole pod File name: upisi 'mbam' kao naziv izvestaja i klikni dugme Save.

- Po dobijenoj poruci ("Your file has been successfully exported") izvestaj koji si nazvao kao 'mbam' bice sacuvan na Desktop.




Arrow Okaci mbam.txt uz poruku koristeci opciju Prikači fajl.

offline
  • Pridružio: 15 Avg 2009
  • Poruke: 654
  • Gde živiš: Cuprija

https://www.mycity.rs/must-login.png

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10621
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

To bi bilo to.


Sledeća procedura će implementirati završno čišćenje.

Arrow Preuzmi "Xplode"-ov DelFix alat i snimi ga na Desktop.
Dvoklikom pokreni alat i štikliraj kućice ispred sledećih opcija;

Remove disinfection tools
Create registry backup
Purge System Restore


Klikni na dugme Run i pričekaj trenutak dok alat ne završi svoj rad.
Od ovog trenutka, svi korišćeni alati u ovoj temi bi trebali biti obrisani.
Alat će takođe formirati izveštaj za tebe. (C:\DelFix.txt)

Alat će snimiti i zdravo stanje registy-ja i napraviti backup koristeci integrisan program "ERUNT" u %windir%\ERUNT\DelFix
Alat briše stare system restore tačke i pravi novu, svežu tačku nakon čišćenja.

offline
  • Pridružio: 15 Avg 2009
  • Poruke: 654
  • Gde živiš: Cuprija

Hvala puno.

Ko je trenutno na forumu
 

Ukupno su 710 korisnika na forumu :: 37 registrovanih, 7 sakrivenih i 666 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: _Petar, _Sale, A.R.Chafee.Jr., amonsrb, bata melenčan, bojank, Chainsaw, chica, dexter300, djboj, Djokislav, Drug pukovnik, FOX, Georgius, GveX, ikan, kripo, lekso, MB120mm, Milan A. Nikolic, Mlav, Mugy, NoOneEver Dreams, Pohovani_00, repac, riva, ruseskij, SlaKoj, Snorks, Steeeefan, Tas011, Toni, Toper, Van, vasa.93, Vlada1389, yufighter