Poslao: 23 Jun 2014 23:47
|
offline
- nadase_70
- Novi MyCity građanin
- Pridružio: 23 Jun 2014
- Poruke: 13
|
Postovani,neko mi je vec oko 10 tak dana na skajpu,a to nisam ja...cak i odbija video poziv,avira mi je registrovala ovaj virus File AAPL/NextLive.Opea.2(Cloud) Source C:\UseresNada\AppData\Roaming\newnext.me\nengine.dll.Kopirala sam text,sve ali je preveliko,pokusacu deo da vam dostavim
ProxyServer: http=127.0.0.1:49162;https=127.0.0.1:49162
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = search.ask.com/?o=APN10645A&gct=hp&.....71&t=4
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x413B0DEF9808CF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = dts.search.ask.com/sr?src=ieb&gct=ds&am.....AG6&q={searchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = dts.search.ask.com/sr?src=ieb&gct=ds&am.....AG6&q={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = dts.search.ask.com/sr?src=ieb&gct=ds&am.....AG6&q={searchTerms}
BHO: Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.)
BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO-x32: Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll (APN LLC.)
BHO-x32: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
Toolbar: HKLM - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.)
Toolbar: HKLM-x32 - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll (APN LLC.)
Toolbar: HKCU - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
|
|
|
|
Poslao: 23 Jun 2014 23:49
|
offline
- Sass Drake
- Anti Malware Fighter
Rank 2
- Pridružio: 26 Avg 2010
- Poruke: 10622
- Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building
|
Pozdrav.
Nisi dobro kopirala FRST.txt izvještaj u poruku i nisi prikačila Addition.txt izvještaj.
|
|
|
|
|
Poslao: 24 Jun 2014 00:13
|
offline
- Sass Drake
- Anti Malware Fighter
Rank 2
- Pridružio: 26 Avg 2010
- Poruke: 10622
- Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building
|
Ako ti je teško kopirati, onda prikači uz poruku i FRST.txt i Addition.txt.
|
|
|
|
Poslao: 24 Jun 2014 00:25
|
offline
- nadase_70
- Novi MyCity građanin
- Pridružio: 23 Jun 2014
- Poruke: 13
|
mycity.rs/must-login.png
mycity.rs/must-login.png
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-06-2014
Ran by Nada (administrator) on NADA-PC on 23-06-2014 23:58:43
Running from C:\Users\Nada\Downloads
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 9
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/
==================== Processes (Whitelisted) =================
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(PC Drivers Headquarters) C:\Program Files (x86)\Driver Restore\Driver Restore\DriverRestore.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [MouseDriver] => C:\Windows\system32\TiltWheelMouse.exe [241152 2012-12-19] (Pixart Imaging Inc)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3091224 2013-07-31] (Logitech, Inc.)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [737872 2014-06-03] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\.DEFAULT\...\RunOnce: [SPReview] - C:\Windows\System32\SPReview\SPReview.exe [301568 2014-01-16] (Microsoft Corporation)
HKU\S-1-5-21-75727802-1495159226-3885587812-1000\...\Run: [NextLive] => C:\Windows\SysWOW64\rundll32.exe ",EntryPoint -m l
HKU\S-1-5-21-75727802-1495159226-3885587812-1000\...\Run: [Driver Restore] => C:\Program Files (x86)\Driver Restore\Driver Restore\DriverRestore.exe [3988856 2013-09-19] (PC Drivers Headquarters)
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browsemngr.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browsermngr.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\bundlesweetimsetup.exe: [Debugger] tasklist.exe
IFEO\cltmngsvc.exe: [Debugger] tasklist.exe
IFEO\delta babylon.exe: [Debugger] tasklist.exe
IFEO\delta tb.exe: [Debugger] tasklist.exe
IFEO\delta2.exe: [Debugger] tasklist.exe
IFEO\deltainstaller.exe: [Debugger] tasklist.exe
IFEO\deltasetup.exe: [Debugger] tasklist.exe
IFEO\deltatb.exe: [Debugger] tasklist.exe
IFEO\deltatb_2501-c733154b.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\iminentsetup.exe: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\rjatydimofu.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\sweetimsetup.exe: [Debugger] tasklist.exe
IFEO\tbdelta.exetoolbar783881609.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
==================== Internet (Whitelisted) ====================
ProxyServer: http=127.0.0.1:49162;https=127.0.0.1:49162
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = search.ask.com/?o=APN10645A&gct=hp&.....71&t=4
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x413B0DEF9808CF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = dts.search.ask.com/sr?src=ieb&gct=ds&am.....AG6&q={searchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = dts.search.ask.com/sr?src=ieb&gct=ds&am.....AG6&q={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = dts.search.ask.com/sr?src=ieb&gct=ds&am.....AG6&q={searchTerms}
BHO: Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.)
BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO-x32: Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll (APN LLC.)
BHO-x32: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
Toolbar: HKLM - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.)
Toolbar: HKLM-x32 - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll (APN LLC.)
Toolbar: HKCU - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Nada\AppData\Roaming\Mozilla\Firefox\Profiles\hcgpxb4l.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Extension: Avira SearchFree Toolbar plus Web Protection - C:\Users\Nada\AppData\Roaming\Mozilla\Firefox\Profiles\hcgpxb4l.default\Extensions\toolbar_AVIRA-V7C@apn.ask.com.xpi [2014-02-21]
FF Extension: Facebook Emoticons 2013 - C:\Users\Nada\AppData\Roaming\Mozilla\Firefox\Profiles\hcgpxb4l.default\Extensions\{28BA24B8-5B3B-4BC9-9EB1-42021314B080}.xpi [2014-01-11]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2014-01-05]
Chrome:
=======
CHR HomePage: hxxp://www.search.ask.com/?o=APN10645A&gct=hp&d=406-706&v=n11551-271&t=4
CHR StartupUrls: "hxxp://www.search.ask.com/?o=APN10645A&gct=hp&d=406-706&v=n11551-271&t=4"
CHR NewTab: "chrome-extension://dgpdioedihjhncjafcpgbbjdpbbkikmi/speeddial.html"
CHR DefaultSearchKeyword: ask.com
CHR DefaultSearchProvider: Ask.com
CHR DefaultSearchURL: dts.search.ask.com/sr?src=crb&gct=ds&am.....AG6&q={searchTerms}
CHR DefaultNewTabURL:
CHR Extension: (Google документи) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-04]
CHR Extension: (Google диск) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-04]
CHR Extension: (YouTube) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-04]
CHR Extension: (Google претрага) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-04]
CHR Extension: (Speed Dial) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgpdioedihjhncjafcpgbbjdpbbkikmi [2014-02-21]
CHR Extension: (Google новчаник) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-04]
CHR Extension: (Gmail) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-04]
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [430160 2014-06-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [430160 2014-06-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1039952 2014-06-03] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2014-02-13] (APN LLC.)
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [112080 2014-04-29] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130584 2014-04-29] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [84720 2013-12-09] (Avira Operations GmbH & Co. KG)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S3 t_mouse.sys; C:\Windows\System32\DRIVERS\t_mouse.sys [6144 2012-12-19] ()
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-06-23 23:31 - 2014-06-23 23:32 - 00015970 _____ () C:\Users\Nada\Desktop\New Text Document (2).txt
2014-06-23 23:30 - 2014-06-23 23:31 - 00000000 ___RD () C:\Users\Nada\Documents\Notes
2014-06-23 22:56 - 2014-06-23 22:58 - 00000293 _____ () C:\Users\Nada\Downloads\Search.txt
2014-06-23 22:41 - 2014-06-23 22:48 - 00021470 _____ () C:\Users\Nada\Downloads\Addition.txt
2014-06-23 22:40 - 2014-06-23 23:58 - 00011625 _____ () C:\Users\Nada\Downloads\FRST.txt
2014-06-23 22:36 - 2014-06-23 23:58 - 00000000 ____D () C:\FRST
2014-06-23 22:36 - 2014-06-23 22:36 - 02082816 _____ (Farbar) C:\Users\Nada\Downloads\FRST64.exe
2014-06-08 20:10 - 2014-06-23 19:58 - 00001344 _____ () C:\Windows\setupact.log
2014-06-08 20:10 - 2014-06-08 20:10 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-07 21:57 - 2014-06-07 21:57 - 00002090 _____ () C:\Users\Nada\Desktop\Avira Free Antivirus Profile Manual Selection.LNK
2014-05-31 10:20 - 2014-05-31 10:24 - 00000000 ____D () C:\Users\Nada\AppData\Roaming\TeamViewer
==================== One Month Modified Files and Folders =======
2014-06-23 23:58 - 2014-06-23 22:40 - 00011625 _____ () C:\Users\Nada\Downloads\FRST.txt
2014-06-23 23:58 - 2014-06-23 22:36 - 00000000 ____D () C:\FRST
2014-06-23 23:46 - 2014-01-03 17:40 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-23 23:32 - 2014-06-23 23:31 - 00015970 _____ () C:\Users\Nada\Desktop\New Text Document (2).txt
2014-06-23 23:31 - 2014-06-23 23:30 - 00000000 ___RD () C:\Users\Nada\Documents\Notes
2014-06-23 23:08 - 2014-02-21 20:49 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-23 22:58 - 2014-06-23 22:56 - 00000293 _____ () C:\Users\Nada\Downloads\Search.txt
2014-06-23 22:48 - 2014-06-23 22:41 - 00021470 _____ () C:\Users\Nada\Downloads\Addition.txt
2014-06-23 22:36 - 2014-06-23 22:36 - 02082816 _____ (Farbar) C:\Users\Nada\Downloads\FRST64.exe
2014-06-23 21:00 - 2014-01-04 02:21 - 00786521 _____ () C:\Windows\WindowsUpdate.log
2014-06-23 20:03 - 2009-07-14 06:45 - 00014016 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-23 20:03 - 2009-07-14 06:45 - 00014016 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-23 20:02 - 2009-07-14 07:13 - 00713888 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-23 19:58 - 2014-06-08 20:10 - 00001344 _____ () C:\Windows\setupact.log
2014-06-23 19:58 - 2014-02-21 20:49 - 00000890 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-23 19:58 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-22 21:59 - 2014-01-03 21:38 - 00000000 ____D () C:\Users\Nada\AppData\Roaming\newnext.me
2014-06-22 17:21 - 2014-01-03 18:11 - 00000000 ____D () C:\Users\Nada\AppData\Roaming\Skype
2014-06-21 23:46 - 2014-03-22 23:12 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-06-21 23:45 - 2014-01-03 18:11 - 00000000 ____D () C:\ProgramData\Skype
2014-06-20 19:15 - 2014-01-11 16:47 - 00000000 ____D () C:\Users\Nada\Desktop\New folder
2014-06-12 19:11 - 2014-02-21 20:50 - 00002185 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-06-09 23:32 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Registration
2014-06-08 20:10 - 2014-06-08 20:10 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-07 21:57 - 2014-06-07 21:57 - 00002090 _____ () C:\Users\Nada\Desktop\Avira Free Antivirus Profile Manual Selection.LNK
2014-05-31 22:49 - 2014-05-04 14:21 - 00000442 _____ () C:\Users\Nada\Desktop\New Text Document.txt
2014-05-31 10:24 - 2014-05-31 10:20 - 00000000 ____D () C:\Users\Nada\AppData\Roaming\TeamViewer
2014-05-30 22:16 - 2014-01-03 18:01 - 00000000 ____D () C:\Users\Nada\AppData\Roaming\Winamp
2014-05-30 22:15 - 2014-01-04 20:58 - 00000000 ____D () C:\Windows\Minidump
Some content of TEMP:
====================
C:\Users\Nada\AppData\Local\Temp\avgnt.exe
C:\Users\Nada\AppData\Local\Temp\SkypeSetup.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-04-20 08:58
==================== End Of Log ============================
|
|
|
|
|
Poslao: 24 Jun 2014 01:02
|
offline
- nadase_70
- Novi MyCity građanin
- Pridružio: 23 Jun 2014
- Poruke: 13
|
Pratila sam vasa uputstva...stigla sam do Fixa,kada kliknem na fix,obavestava me da nije lociran u folderu,pokusavala sam...nista,i dalje pokusavam,hvala
|
|
|
|
Poslao: 24 Jun 2014 01:19
|
offline
- Sass Drake
- Anti Malware Fighter
Rank 2
- Pridružio: 26 Avg 2010
- Poruke: 10622
- Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building
|
Izbacuje ti grešku jer nisi snimila FRST na Desktop kako stoji u uputstvu već u Downloads folder. Premjesti FRST.exe na Desktop i opet pokušaj.
|
|
|
|
|
Poslao: 24 Jun 2014 01:30
|
offline
- Sass Drake
- Anti Malware Fighter
Rank 2
- Pridružio: 26 Avg 2010
- Poruke: 10622
- Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building
|
Postavila si mi fixlist.txt, a ne fixlog.txt. Ako si pokretala fix, nemoj ga pokretati opet već mi samo okači fixlog.txt koji bi ti trebao biti na desktopu.
|
|
|
|