windows XP problem

windows XP problem

offline
  • Stefanovic
  • Pridružio: 02 Nov 2011
  • Poruke: 131
  • Gde živiš: Nis

Srecna Vam Nova 2015 ta god i svi praznici kao i Srpska nova godina... Very Happy

Obracam vam se zadnji put u vezi ovog kompa jer ako ponovo napisem problem u vezi OS brisite temu ili cu ja baciti komp LOL LOL

Pre dva dana samo se,ni sam neznam kako Automatic updates i onda se ugasio i ja kao laik nekako udjoh u bios i uspeo da uradim oporavak sistema i evo sada radi ali koci da jedva radi na mozili i uopste komp sporo sve otvara ..skenirao Avirom i prilazem log

Ako ima nade da ga resimo ako ne ,odsluzio je svoje sa ovom slabom konfiguracijom

Konekcija je 12, Windows XP





mycity.rs/must-login.png

mycity.rs/must-login.png

mycity.rs/must-login.png








Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-01-2015 02
Ran by owner (administrator) on HOME-E30B55376D on 13-01-2015 10:05:08
Running from C:\Documents and Settings\owner\Desktop
Loaded Profile: owner (Available profiles: owner)
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: English (United States)
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Lexmark International, Inc.) C:\WINDOWS\system32\LEXBCES.EXE
(Lexmark International, Inc.) C:\WINDOWS\system32\LEXPPS.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(VisualTaskTips.com) C:\Program Files\VisualTaskTips\VisualTaskTips.exe
(MyCity) C:\Program Files\MCShield\MCShieldRTM.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
(Analog Devices, Inc.) C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Microsoft Corporation) C:\WINDOWS\system32\dllhost.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Wisdom Software Inc. ) C:\Program Files\Wisdom-soft ScreenHunter 5 Pro\ScreenHunter.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [702768 2014-12-16] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-670792205-2225589205-3563514748-1003\...\Run: [VisualTaskTips] => C:\Program Files\VisualTaskTips\VisualTaskTips.exe [34816 2006-03-14] (VisualTaskTips.com)
HKU\S-1-5-21-670792205-2225589205-3563514748-1003\...\Run: [VW100 Connection Manager] => [X]
HKU\S-1-5-21-670792205-2225589205-3563514748-1003\...\Run: [MCShield Monitor] => C:\Program Files\MCShield\mcshieldrtm.exe [607232 2013-02-10] (MyCity)
HKU\S-1-5-18\...\Run: [DWQueuedReporting] => C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE [437160 2007-02-26] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-670792205-2225589205-3563514748-1003\Software\Microsoft\Internet Explorer\Main,Search Page = microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-670792205-2225589205-3563514748-1003 -> {82D7B80F-7BD3-4E73-B330-67BED78AE9B7} URL = google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: No Name -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> No File
BHO: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} java.sun.com/update/1.7.0/jinstall-1_7_0_71-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0071-ABCDEFFEDCBA} java.sun.com/update/1.7.0/jinstall-1_7_0_71-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} java.sun.com/update/1.7.0/jinstall-1_7_0_71-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 92.60.224.30 92.60.224.20

FireFox:
========
FF ProfilePath: C:\Documents and Settings\owner\Application Data\Mozilla\Firefox\Profiles\ns8ys349.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_235.dll ()
FF Plugin: @java.com/DTPlugin,version=10.71.2 -> C:\WINDOWS\system32\npdeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @real.com/nprpchromebrowserrecordext;version=15.0.6.14 -> C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll No File
FF Plugin: @real.com/nprphtml5videoshim;version=15.0.6.14 -> C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll No File
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: Adblock Plus Pop-up Addon - C:\Documents and Settings\owner\Application Data\Mozilla\Firefox\Profiles\ns8ys349.default\Extensions\adblockpopups@jessehakanen.net.xpi [2015-01-13]
FF Extension: Facebook Secret Emoticons - C:\Documents and Settings\owner\Application Data\Mozilla\Firefox\Profiles\ns8ys349.default\Extensions\jid0-XZn6pYCdV3ANrfYigxlyyGDrxAM@jetpack.xpi [2015-01-13]
FF Extension: Adblock Plus - C:\Documents and Settings\owner\Application Data\Mozilla\Firefox\Profiles\ns8ys349.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-01-13]

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx [Not Found]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [431920 2014-12-16] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [431920 2014-12-16] (Avira Operations GmbH & Co. KG)
R2 LexBceS; C:\WINDOWS\system32\LEXBCES.EXE [303104 2003-08-18] (Lexmark International, Inc.)
S3 NVSvc; C:\WINDOWS\system32\nvsvc32.exe [155716 2007-09-17] (NVIDIA Corporation) [File not signed]
R2 SoundMAX Agent Service (default); C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [45056 2002-09-20] (Analog Devices, Inc.) [File not signed]
R3 COMSysApp; %SystemRoot%\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
S3 SwPrv; C:\WINDOWS\system32\dllhost.exe /Processid:{ABEF16D8-76FA-4986-8949-8D61B5626DA7}

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [98160 2014-12-10] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [136216 2014-12-10] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\System32\DRIVERS\avkmgr.sys [37352 2014-12-10] (Avira Operations GmbH & Co. KG)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R3 FETND5BV; C:\WINDOWS\System32\DRIVERS\fetnd5bv.sys [42496 2004-12-16] (VIA Technologies, Inc. )
S3 FETNDIS; C:\WINDOWS\System32\DRIVERS\fetnd5.sys [27165 2001-08-17] (VIA Technologies, Inc. )
R3 gameenum; C:\WINDOWS\System32\DRIVERS\gameenum.sys [10624 2008-04-14] (Microsoft Corporation)
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [22856 2012-09-29] (Malwarebytes Corporation)
S3 N100; C:\WINDOWS\System32\DRIVERS\n100325.sys [128000 2001-08-17] (Compaq Computer Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R3 nv; C:\WINDOWS\System32\DRIVERS\nv4_mini.sys [6853088 2007-09-17] (NVIDIA Corporation) [File not signed]
R3 pfc; C:\WINDOWS\System32\drivers\pfc.sys [10368 2007-04-23] (Padus, Inc.) [File not signed]
R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [28520 2014-12-10] (Avira GmbH)
S3 vulfnths; C:\WINDOWS\System32\Drivers\vulfnth.sys [6912 2002-10-24] (VIA Technologies, Inc.) [File not signed]
R3 vulfntrs; C:\WINDOWS\System32\Drivers\vulfntr.sys [10496 2002-11-13] (VIA Technologies, Inc.) [File not signed]
S3 vwmfbus; C:\WINDOWS\System32\DRIVERS\vwmfbus.sys [98560 2009-11-11] (MCCI Corporation)
S3 vwmfdiag; C:\WINDOWS\System32\DRIVERS\vwmfdiag.sys [100224 2009-11-11] (MCCI Corporation)
S3 vwmfmdfl; C:\WINDOWS\System32\DRIVERS\vwmfmdfl.sys [14848 2009-11-11] (MCCI Corporation)
S3 vwmfmdm; C:\WINDOWS\System32\DRIVERS\vwmfmdm.sys [123776 2009-11-11] (MCCI Corporation)
S3 vwmfserd; C:\WINDOWS\System32\DRIVERS\vwmfserd.sys [100224 2009-11-11] (MCCI Corporation)
S3 ZD1211BU(TP-LINK); C:\WINDOWS\System32\DRIVERS\zd1211Bu.sys [500736 2009-01-05] (Atheros Technology Corporation) [File not signed]
S3 ZDPSp50; C:\WINDOWS\System32\Drivers\ZDPSp50.sys [17664 2009-01-05] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [X]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S4 IntelIde; No ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () [File not signed]

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-13 10:05 - 2015-01-13 10:06 - 00011917 _____ () C:\Documents and Settings\owner\Desktop\FRST.txt
2015-01-13 10:04 - 2015-01-13 10:05 - 00000000 ____D () C:\FRST
2015-01-13 10:04 - 2015-01-13 10:03 - 01115648 _____ (Farbar) C:\Documents and Settings\owner\Desktop\FRST.exe
2015-01-13 09:26 - 2015-01-13 07:02 - 00050476 _____ () C:\Documents and Settings\owner\Desktop\AVSCAN-20150113-043548-2B3FB182.LOG
2015-01-13 08:41 - 2015-01-13 09:26 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-01-13 06:05 - 2015-01-13 06:05 - 00000117 _____ () C:\WINDOWS\ScreenHunter.INI
2015-01-13 06:04 - 2015-01-13 06:04 - 00001668 _____ () C:\Documents and Settings\owner\Start Menu\ScreenHunter 5.1 Pro.lnk
2015-01-13 06:04 - 2015-01-13 06:04 - 00001668 _____ () C:\Documents and Settings\owner\Desktop\ScreenHunter 5.1 Pro.lnk
2015-01-13 06:04 - 2015-01-13 06:04 - 00000000 ____D () C:\Documents and Settings\owner\Start Menu\Programs\Wisdom-soft ScreenHunter 5 Pro
2015-01-13 06:04 - 2015-01-13 06:04 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Wisdom-soft ScreenHunter 5 Pro
2015-01-13 06:03 - 2015-01-13 06:04 - 00000000 ____D () C:\Program Files\Wisdom-soft ScreenHunter 5 Pro
2015-01-13 04:46 - 2015-01-13 04:46 - 00000732 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox.lnk
2015-01-13 04:46 - 2015-01-13 04:46 - 00000726 _____ () C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
2015-01-12 14:42 - 2015-01-13 09:50 - 00000000 ____D () C:\Documents and Settings\owner\Desktop\zez
2015-01-11 22:05 - 2015-01-11 22:17 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-01-11 20:05 - 2015-01-11 20:05 - 00000000 ____D () C:\Documents and Settings\owner\Local Settings\Application Data\Wisdom-soft
2015-01-11 08:34 - 2015-01-11 08:34 - 00000000 ____D () C:\Program Files\7-Zip
2015-01-10 19:25 - 2015-01-11 08:03 - 00000000 ____D () C:\Program Files\Skype(2)
2015-01-10 17:54 - 2015-01-11 08:03 - 00000000 ____D () C:\Program Files\Mozilla Firefox(3)
2015-01-10 15:54 - 2015-01-11 22:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2922229$
2015-01-10 15:54 - 2015-01-11 22:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868626$
2015-01-10 15:53 - 2015-01-11 22:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2916036$
2015-01-10 15:53 - 2015-01-11 22:26 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2900986$
2015-01-10 15:53 - 2015-01-11 22:26 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2898715$
2015-01-10 15:53 - 2015-01-11 22:26 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2847311$
2015-01-10 15:53 - 2015-01-10 15:53 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2834886$
2015-01-10 15:52 - 2015-01-11 22:26 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2929961$
2015-01-10 15:52 - 2015-01-11 22:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2930275$
2015-01-10 15:52 - 2015-01-11 22:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2904266$
2015-01-10 15:52 - 2015-01-11 22:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876217$
2015-01-10 15:52 - 2015-01-11 22:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2864063$
2015-01-10 15:52 - 2015-01-11 22:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862335$
2015-01-10 15:52 - 2015-01-11 22:24 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862152$
2015-01-10 15:50 - 2015-01-11 22:23 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2850869$
2015-01-10 15:50 - 2015-01-11 22:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876331$
2015-01-10 15:50 - 2015-01-11 22:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2859537$
2015-01-10 15:50 - 2015-01-11 22:19 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868038$
2015-01-10 15:49 - 2015-01-11 22:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2893294$
2015-01-10 15:49 - 2015-01-11 22:04 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2892075$
2015-01-10 15:49 - 2015-01-11 22:04 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862330$
2015-01-10 15:49 - 2015-01-11 22:04 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2834903-v2_WM10L$
2015-01-10 15:46 - 2015-01-11 22:01 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2914368$
2015-01-10 14:43 - 2015-01-11 08:55 - 00000000 ____D () C:\Program Files\Mozilla Firefox(2)
2015-01-10 13:11 - 2013-07-03 03:12 - 00025088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidparse.sys
2015-01-10 13:10 - 2013-07-17 01:58 - 00123008 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbvideo.sys
2015-01-10 13:10 - 2013-07-17 01:58 - 00060160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbaudio.sys
2015-01-10 13:10 - 2013-07-17 01:58 - 00046848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irbus.sys
2015-01-10 13:09 - 2013-08-09 01:55 - 00005376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbd.sys
2015-01-10 12:37 - 2015-01-10 12:37 - 00000000 ___DC () C:\WINDOWS\$NtUninstallKB2467659$
2015-01-07 20:10 - 2015-01-12 20:40 - 00000464 _____ () C:\WINDOWS\Tasks\At6.job
2015-01-07 20:10 - 2015-01-12 20:10 - 00000464 _____ () C:\WINDOWS\Tasks\At7.job
2015-01-07 20:10 - 2015-01-12 14:00 - 00000464 _____ () C:\WINDOWS\Tasks\At8.job
2015-01-07 20:10 - 2015-01-12 10:10 - 00000464 _____ () C:\WINDOWS\Tasks\At5.job
2015-01-07 19:35 - 2008-04-14 05:42 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ipsink.ax
2015-01-07 19:35 - 2008-04-14 05:42 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipsink.ax
2015-01-07 19:35 - 2008-04-14 00:16 - 00015232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\streamip.sys
2015-01-07 19:35 - 2008-04-14 00:16 - 00015232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\StreamIP.sys
2015-01-07 19:35 - 2008-04-14 00:16 - 00010880 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ndisip.sys
2015-01-07 19:35 - 2008-04-14 00:16 - 00010880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisIP.sys
2015-01-07 19:35 - 2008-04-14 00:09 - 00005504 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mstee.sys
2015-01-07 19:35 - 2008-04-14 00:09 - 00005504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MSTEE.sys
2015-01-07 19:34 - 2008-04-14 05:42 - 00091136 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kswdmcap.ax
2015-01-07 19:34 - 2008-04-14 05:42 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\kswdmcap.ax
2015-01-07 19:34 - 2008-04-14 05:42 - 00061952 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kstvtune.ax
2015-01-07 19:34 - 2008-04-14 05:42 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\kstvtune.ax
2015-01-07 19:34 - 2008-04-14 05:42 - 00053760 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\vfwwdm32.dll
2015-01-07 19:34 - 2008-04-14 05:42 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\vfwwdm32.dll
2015-01-07 19:34 - 2008-04-14 05:42 - 00043008 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ksxbar.ax
2015-01-07 19:34 - 2008-04-14 05:42 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksxbar.ax
2015-01-07 19:34 - 2008-04-14 05:42 - 00020992 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dshowext.ax
2015-01-07 19:34 - 2008-04-14 05:42 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dshowext.ax
2015-01-07 19:34 - 2008-04-14 00:16 - 00085248 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nabtsfec.sys
2015-01-07 19:34 - 2008-04-14 00:16 - 00085248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NABTSFEC.sys
2015-01-07 19:34 - 2008-04-14 00:16 - 00019200 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wstcodec.sys
2015-01-07 19:34 - 2008-04-14 00:16 - 00019200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WSTCODEC.SYS
2015-01-07 19:34 - 2008-04-14 00:16 - 00017024 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ccdecode.sys
2015-01-07 19:34 - 2008-04-14 00:16 - 00017024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\CCDECODE.sys
2015-01-07 19:34 - 2008-04-14 00:16 - 00011136 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\slip.sys
2015-01-07 19:34 - 2008-04-14 00:16 - 00011136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SLIP.sys
2015-01-05 19:24 - 2015-01-05 19:24 - 00000000 ____D () C:\Documents and Settings\owner\Local Settings\Application Data\Skype
2014-12-26 11:27 - 2000-09-04 14:24 - 00008055 _____ () C:\WINDOWS\Serbian2.gpl
2014-12-25 11:46 - 2015-01-12 20:40 - 00000464 _____ () C:\WINDOWS\Tasks\At2.job
2014-12-25 11:46 - 2015-01-12 14:00 - 00000464 _____ () C:\WINDOWS\Tasks\At4.job
2014-12-25 11:46 - 2015-01-12 11:46 - 00000464 _____ () C:\WINDOWS\Tasks\At3.job
2014-12-25 11:46 - 2015-01-12 10:10 - 00000464 _____ () C:\WINDOWS\Tasks\At1.job
2014-12-24 10:53 - 2014-12-24 10:53 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\WinZip
2014-12-23 12:55 - 2014-12-23 12:55 - 00000000 ____D () C:\WINDOWS\system32\Adobe
2014-12-23 12:55 - 2014-12-23 12:55 - 00000000 ____D () C:\Program Files\VS Revo Group
2014-12-23 12:55 - 2014-12-23 12:55 - 00000000 ____D () C:\Program Files\VisualTaskTips
2014-12-23 12:55 - 2014-12-23 12:55 - 00000000 ____D () C:\Documents and Settings\owner\Start Menu\Programs\Visual Task Tips
2014-12-23 12:55 - 2014-12-23 12:55 - 00000000 ____D () C:\Documents and Settings\owner\Application Data\InterTrust
2014-12-23 12:55 - 2014-12-23 12:55 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Revo Uninstaller Pro
2014-12-23 12:54 - 2014-12-23 12:54 - 00000000 ____D () C:\Documents and Settings\owner\Start Menu\Programs\WinRAR
2014-12-23 12:54 - 2014-12-23 12:54 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\WinRAR
2014-12-23 12:53 - 2014-12-24 10:53 - 00000000 ____D () C:\Program Files\WinZip
2014-12-23 12:53 - 2014-12-23 12:54 - 00000000 ____D () C:\Program Files\WinRAR
2014-12-23 12:53 - 2014-12-23 12:54 - 00000000 ____D () C:\Program Files\Ahead
2014-12-23 12:53 - 2014-12-23 12:54 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Nero
2014-12-23 12:52 - 2015-01-11 09:00 - 00000000 ____D () C:\Program Files\CyberLink
2014-12-23 12:52 - 2014-12-23 12:54 - 00000000 ____D () C:\Program Files\Common Files\Ahead
2014-12-23 12:52 - 2014-12-23 12:52 - 00000000 ____D () C:\Program Files\Common Files\Services
2014-12-23 12:52 - 2014-12-23 12:52 - 00000000 ____D () C:\Program Files\Common Files\Nero
2014-12-23 12:52 - 2014-12-23 12:52 - 00000000 ____D () C:\Program Files\Common Files\L&H
2014-12-23 12:52 - 2014-12-23 12:52 - 00000000 ____D () C:\Program Files\Common Files\Adobe AIR(3)
2014-12-22 21:18 - 2014-12-22 21:18 - 00000000 ____D () C:\Documents and Settings\owner\Application Data\SumatraPDF
2014-12-22 20:36 - 2014-12-22 20:36 - 00000000 ____D () C:\Documents and Settings\owner\Application Data\NVA Reader
2014-12-21 12:37 - 2014-12-21 12:38 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\TuneUp Software
2014-12-16 08:04 - 2014-12-16 08:04 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-12-15 22:51 - 2014-12-16 07:38 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes' Anti-Malware (portable)
2014-12-15 22:50 - 2014-12-15 22:50 - 00055000 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-12-15 19:37 - 2014-12-15 18:34 - 00883624 _____ (Oracle Corporation) C:\WINDOWS\system32\npdeployJava1.dll
2014-12-15 19:37 - 2014-12-15 18:34 - 00806824 _____ (Oracle Corporation) C:\WINDOWS\system32\deployJava1.dll
2014-12-15 19:12 - 2014-12-15 19:12 - 00000000 ____D () C:\Documents and Settings\owner\Application Data\Oracle
2014-12-15 18:35 - 2014-12-15 18:34 - 00272808 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2014-12-15 18:34 - 2014-12-15 18:34 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2014-12-15 18:34 - 2014-12-15 18:34 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2014-12-15 18:34 - 2014-12-15 18:34 - 00096680 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2014-12-15 18:24 - 2014-12-15 18:24 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-12-15 18:22 - 2014-12-15 18:23 - 00006741 _____ () C:\WINDOWS\system32\jupdate-1.7.0_71-b14.log
2014-12-15 18:22 - 2014-12-15 18:22 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Java

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-13 10:06 - 2012-01-15 15:38 - 00000000 ____D () C:\Documents and Settings\owner\Local Settings\temp
2015-01-13 10:05 - 2010-08-04 11:46 - 00000422 ___HC () C:\WINDOWS\Tasks\User_Feed_Synchronization-{EF5539D9-73C2-488E-899E-A6A99A167973}.job
2015-01-13 09:30 - 2012-04-08 19:16 - 01594099 ____C () C:\WINDOWS\WindowsUpdate.log
2015-01-13 09:26 - 2007-04-23 09:08 - 00000000 ____D () C:\Documents and Settings\owner
2015-01-13 07:35 - 2012-04-09 06:43 - 00032258 ____N () C:\WINDOWS\SchedLgU.Txt
2015-01-13 06:29 - 2011-11-06 16:42 - 00000000 ____D () C:\WINDOWS\system32\NtmsData
2015-01-13 04:48 - 2010-08-04 13:30 - 00000000 ____D () C:\Documents and Settings\owner\Application Data\Mozilla
2015-01-13 04:36 - 2007-04-23 08:57 - 00000000 ____D () C:\WINDOWS\Registration
2015-01-13 04:33 - 2012-11-14 19:42 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\MCShield
2015-01-13 04:33 - 2012-04-20 09:52 - 00000159 ____C () C:\WINDOWS\wiadebug.log
2015-01-13 04:33 - 2012-04-20 09:52 - 00000049 ____C () C:\WINDOWS\wiaservc.log
2015-01-13 04:33 - 2007-04-23 09:07 - 00000006 ___HC () C:\WINDOWS\Tasks\SA.DAT
2015-01-13 04:32 - 2007-04-23 09:08 - 00000278 __SHC () C:\Documents and Settings\owner\ntuser.ini
2015-01-13 04:18 - 2010-08-04 11:09 - 00000000 ____D () C:\WINDOWS\Minidump
2015-01-12 12:06 - 2007-04-23 11:49 - 03610096 ____C () C:\WINDOWS\system32\FNTCACHE.DAT
2015-01-12 01:24 - 2011-11-14 09:31 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2015-01-11 23:28 - 2011-11-04 10:48 - 00000069 ____C () C:\WINDOWS\NeroDigital.ini
2015-01-11 22:25 - 2012-01-13 09:57 - 00030752 ____C () C:\WINDOWS\system32\TZLog.log
2015-01-11 21:54 - 2007-04-23 09:31 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2015-01-11 20:24 - 2007-04-23 08:58 - 00000000 ____D () C:\Program Files\Outlook Express
2015-01-11 19:32 - 2007-04-23 13:55 - 00098304 ____C () C:\Documents and Settings\owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-01-11 11:24 - 2012-04-13 08:59 - 00001505 ____C () C:\Documents and Settings\owner\Desktop\Paint.lnk
2015-01-11 09:35 - 2010-08-04 12:00 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Skype
2015-01-11 09:33 - 2010-08-04 12:00 - 00000000 ____D () C:\Documents and Settings\owner\Application Data\Skype
2015-01-11 09:11 - 2007-04-23 09:07 - 00000000 __SHD () C:\Documents and Settings\LocalService
2015-01-11 09:11 - 2007-04-23 09:06 - 00000000 __SHD () C:\Documents and Settings\NetworkService
2015-01-11 08:40 - 2011-11-03 17:23 - 00000000 ____D () C:\Documents and Settings\owner\Application Data\DAEMON Tools Lite
2015-01-11 08:37 - 2014-12-09 10:35 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\HP
2015-01-11 08:12 - 2007-04-23 11:43 - 00000000 ____D () C:\WINDOWS\system
2015-01-11 08:02 - 2011-11-06 18:41 - 00000000 ____D () C:\Documents and Settings\owner\Application Data\LogoMaker
2015-01-10 15:53 - 2010-08-04 11:44 - 00000000 ____D () C:\WINDOWS\ie8updates
2015-01-10 15:40 - 2001-08-23 13:00 - 00002206 ____C () C:\WINDOWS\system32\wpa.dbl
2015-01-10 12:37 - 2007-04-23 09:29 - 00000000 ___HD () C:\WINDOWS\$hf_mig$
2015-01-10 10:36 - 2010-08-04 11:53 - 00000000 ____D () C:\Documents and Settings\owner\Application Data\Winamp
2015-01-07 19:55 - 2011-11-03 17:23 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
2015-01-07 19:36 - 2007-04-23 11:50 - 00513656 ____C () C:\WINDOWS\system32\PerfStringBackup.INI
2014-12-25 11:52 - 2014-12-09 10:38 - 00000000 ____D () C:\Documents and Settings\owner\Application Data\HpUpdate
2014-12-24 10:53 - 2012-08-28 12:04 - 00001734 _____ () C:\Documents and Settings\All Users\Start Menu\WinZip.lnk
2014-12-24 10:53 - 2010-08-04 11:52 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\WinZip
2014-12-24 10:53 - 2001-08-23 13:00 - 00000642 ____C () C:\WINDOWS\win.ini
2014-12-24 10:46 - 2007-04-23 09:09 - 00086944 ____C () C:\Documents and Settings\owner\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2014-12-24 08:12 - 2007-04-23 09:38 - 00000000 ____D () C:\Program Files\Common Files\Designer
2014-12-23 17:33 - 2007-04-23 09:27 - 00000000 ____D () C:\Documents and Settings\owner\Local Settings\Application Data\Adobe
2014-12-23 14:42 - 2012-11-14 20:11 - 00002347 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader XI.lnk
2014-12-23 12:56 - 2007-04-23 09:20 - 00000000 __SHD () C:\Documents and Settings\owner\UserData
2014-12-23 12:55 - 2007-04-23 09:27 - 00000000 ____D () C:\Documents and Settings\owner\Application Data\Adobe
2014-12-23 12:55 - 2007-04-23 08:54 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Programs\Accessories
2014-12-22 13:28 - 2001-08-23 13:00 - 00000246 ____C () C:\WINDOWS\system.ini
2014-12-22 10:26 - 2012-01-13 10:00 - 00000000 ____D () C:\Program Files\MSXML 4.0
2014-12-20 23:05 - 2012-03-31 15:13 - 00000830 ____C () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-12-20 23:05 - 2011-11-26 19:25 - 00000286 ____C () C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-670792205-2225589205-3563514748-1003.job
2014-12-20 23:05 - 2011-11-26 19:25 - 00000278 ____C () C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-670792205-2225589205-3563514748-1003.job
2014-12-20 23:01 - 2007-04-23 09:26 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-12-20 23:01 - 2007-04-23 09:25 - 00000000 ____D () C:\Program Files\Adobe
2014-12-20 14:06 - 2007-04-23 09:11 - 00000000 ____D () C:\temp
2014-12-16 19:09 - 2007-04-23 09:43 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-12-15 23:23 - 2012-01-13 09:47 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB968389$
2014-12-15 22:51 - 2013-07-03 09:13 - 00119000 ____C (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2014-12-15 19:38 - 2012-08-10 16:03 - 00000000 ____D () C:\Program Files\Java
2014-12-15 18:43 - 2011-11-26 19:23 - 00000000 ____D () C:\Documents and Settings\owner\Application Data\Real
2014-12-15 18:43 - 2011-11-26 19:23 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Real
2014-12-15 18:38 - 2011-11-21 11:09 - 00000000 ____D () C:\Documents and Settings\owner\Start Menu\Programs\Unlocker
2014-12-15 18:34 - 2012-08-10 16:04 - 00145408 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl

Files to move or delete:
====================
C:\Windows\Tasks\At1.job
C:\Windows\Tasks\At2.job
C:\Windows\Tasks\At3.job
C:\Windows\Tasks\At4.job
C:\Windows\Tasks\At5.job
C:\Windows\Tasks\At6.job
C:\Windows\Tasks\At7.job
C:\Windows\Tasks\At8.job


Some content of TEMP:
====================
C:\Documents and Settings\owner\Local Settings\temp\avgnt.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================

offline
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6082

Pozdrav cilitis,

Takodje, sve najbolje.

Postavljeni izvestaji ne pokazuju tragove aktivne infekcije. fix.bat file ce ukloniti neke ostatke, TFC ce obrisati temp & cache dok ce MBAR izvrsiti obimnu ARK proveru.



Otvori Notepad i kopiraj sljedeći tekst:

@ECHO OFF
Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SpeedUpMyPC"
IF EXIST log.txt DEL log.txt
ECHO Uklanjanje Kljuceva i Foldera>>log.txt
FOR %%i in (
"C:\Program Files\Uniblue\SpeedUpMyPC") DO (
IF EXIST %%i (
RD /S /Q %%i
IF EXIST %%i (
ECHO %%i nije uklonjeno>>log.txt
) ELSE (
ECHO %%i uklonjeno uspesno>>log.txt)
) ELSE (
ECHO %%i nije pronadjeno>>log.txt))

START NOTEPAD.EXE log.txt
DEL %0


Snimi ga na Desktop pod imenom fix.bat
Obrati pažnju na ekstenziju .bat

Pokreni fix.bat i kopiraj u poruku tekst koji će ti se otvoriti u Notepad-u.






.


Preuzmi TFC (Temp File Cleaner) i sacuvaj ga na Desktop.
Dvoklikom pokreni program i klikni na dugme Start da bi dozvolio programu da otpocne skeniranje.
Kada program zavrsi skeniranje,mozda ce zatraziti da restartujes racunar. Ako se to ne desi, restartuj ga rucno.







.




Arrow Preuzmi Malwarebytes Anti-Rootkit (MBAR) sa sledeceg linka i sacuvaj ga na Desktop.

Dvoklikom pokreni MBAR () na ikonicu programa:
- Klikni OK na sledecem prozoru da bi dozvolio raspakivanje u zaseban mbar folder na desktop-u;
- mbar.exe ce biti startovan. Na nekim sistemima to moze da potraje nekoliko dodatnih sekundi, te pricekati pokretanje.;
- U uvodnom prozoru klikni dugme Next ukoliko si saglasan;



• Na 'Update Database' prozoru klik na dugme Update da bi preuzeo sveze definicije. Kada se ispise poruka 'Success: Database was successfully updated' klik na dugme Next;
• Pod sekcijom 'Scan Targets' proveri da su sve opcije stiklirane, te klikni na dugme Scan;

Obavestenje: sa nekim infekcijama moze se desiti da se prikaze neka od sledecih poruka:
- 'Could not load protection driver' => u tom slucaju klikni OK.
- 'Could not load DDA driver' => klikni Yes na to obavestenje da bi dozvolio ucitavanje nakon restarta. Dozvoli restart i nastavi sa ostatkom instrukcija posle restarta.





>> Ukoliko malware nije detektovan, klik na Exit dugme da zatvoris program. U sledecu poruku postavi mbar-log-year-month-day (sat-minuti-sekundi).txt i system-log.txt izveštaje.

>> Ukoliko su infekcija/e pronadjene, proveriti da li je obelezena opcija 'Create Restore Point' i klikni na dugme Cleanup! da bi uklonili pretnje.
- Procedura uklanjanje malware-a (scheduled) ce biti zakazana po restartu, bice prikazano obavestenje u pop-up prozoru. Klikni dugme Yes i sistem bi trebao da se restartuje i da zavrsi proceduru ciscenja.



Obavestenje! samo ukoliko je RootKit detektovan: - postaraj se da pokrenes fixdamage.exe alat koji se nalazi u mbar folderu, \Plugins\fixdamage.exe:
- Dvoklikom pokreni fixdamage, u crnom prozoru koji se otvori (command prompt) ukucaj Y (Y stoji za Yes) da bi nastavio izvrsenje, pricekati da alat odradi sve popravke ...
- Kada vidis poruku 'press any key to exit' popravka je kompletirana. Pritisnuti bilo koju tipku na tastaturi da bi se prozor zatvorio. Restartovati sistem.





Sledeci izvestaji ce biti formirani u mbar folderu.
1. mbar-log-year-month-day (hour-minute-second).txt
2. system-log.txt

Iskopiraj sadrzaj mbar log-a u poruku a system log okaci uz poruku koristeci opciju Prikači fajl.

offline
  • Stefanovic
  • Pridružio: 02 Nov 2011
  • Poruke: 131
  • Gde živiš: Nis

Snimi ga na Desktop pod imenom fix.bat
Obrati pažnju na ekstenziju .bat

Pokreni fix.bat i kopiraj u poruku tekst koji će ti se otvoriti u Notepad-u.

Ja uradih ovako ali da li si mislio da u FRST u pokrenem fix ,ja to uradih ali nije hteo da se pokrene ili lose razumeh...


offline
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6082

Evo ti fix.bat, napravljen. Samo ga preuzmes na Desktop i dvoklikom pokreni file ...
https://www.mycity.rs/must-login.png

Potom predji na TFC i na MBAR. Ni u jednom momentu nisam spomenuo da je potrebno ponovo pokretati FRST.

offline
  • Stefanovic
  • Pridružio: 02 Nov 2011
  • Poruke: 131
  • Gde živiš: Nis

Napisano: 13 Jan 2015 16:09

magna86 hvala malo se zbunih msve zavrsio i postavljam log

mycity.rs/must-login.png

Dopuna: 13 Jan 2015 16:13

Virked da mozda je to resenje ali nisam bas adekvatno obrazovan da instaliram sam windows...

Dopuna: 13 Jan 2015 16:15

mycity.rs/must-login.png

Dopuna: 13 Jan 2015 16:16

Ja da znam ja bi ga instalirao ....

Dopuna: 13 Jan 2015 16:35

I jedno pitanje da li postoji da se download uje program xp3 kao neka zakrpa da pregazi ovaj ili mora da se rusi sistem i sve ponovo instalirati...

offline
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6082

Ovde nema aktivne infekcije. Izvini, ali pola stvari koje si napisao nisam te razumeo.

U svakom slucaju, tvoj problem nije prouzrokovan aktivnom infekcijom. Mozda mesas brzinu interneta sa sporoscu browser-a. Obrisi Chrome cache, mozda pomogne.
https://support.google.com/chrome/answer/95582?hl=en

U svakom slucaju, otvori novu temu u Windows forumu i malo bolje postavi pitanja, verujem da ces dobiti fina uputstva sta dalje. Wink

Vezano za xp3, ne znam sta je to, postoji Windows XP kao operativni sistem i Service Pack 3, pakovanje zakrpa. Koje sve to vec i imas instalirano ali imaj na umu da je XP ostao bez M$ podrzke.

Obrisi rucno FRST.exe, njegov radni folder u C:\FRST, kao i MBAR.exe i njegov folder. Sve logove obrisi, to je to.

offline
  • Stefanovic
  • Pridružio: 02 Nov 2011
  • Poruke: 131
  • Gde živiš: Nis

magna86 hvala puno na pomoci ....ziv bio i svako dobro
Ziveli

Ko je trenutno na forumu
 

Ukupno su 795 korisnika na forumu :: 35 registrovanih, 3 sakrivenih i 757 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3028 - dana 22 Nov 2019 07:47

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: _Sale, A.R.Chafee.Jr., aleksmajstor, Apok, benne, bojank, BW2, cifra, Cranium, darios, darkangel, doom83, Dorcolac, Drug pukovnik, Dzoni70, GandorCC, goxin, Hektor, hooraay, Kruger, Leonardo, metemma, milos.cbr, Mitraljeta, nadjas_515, nenad812, Panter, renoje2, RJ, ruseskij, S2M, Snorks, Toni, zdrebac, |_MeD_|