Neko je u mom računaru?!

  • Pridružio: 29 Apr 2017
  • Poruke: 13

Već sam napisao istu temu u kategoriji "Zaštita od zlonamernih programa" ali su me upituli ovdje ..

Dakle primjetio sam čudna dešavanja sa mojim računarom , pa me strah zbog lošeg iskustva od prije 2-3 godine kada sam na deskopu imao samo jedna prozor u koji sam mogao da pišem i ništa više jer je neko "upao" u moje računalo , simptomi su sada isti ...

Prvo što sam primjetio kada bi ostao moj fb ili instagram profil ukljucen više puta sam naletio na neke "stvari" koje ja nisam "lajkovao" i slicne stvari , nekoliko puta mi se desilo (zadnji put sinoc oko ponoci mozda malo ranije-kasnije) jest da mi se start menu traka mjenja iz sive u crnu , treutno je crna nekad zna da bude siva ali prije nego promjeni boju "monitor" mi nekako čudno "zablinka" u 1-2sekunde ...

Isto kao da se neko odspojio preko teamviewer-a pa ono vidi se da ga je "izbacilo" eh to mi se sinoc isto desilo isti fazon ...

Evo izvod iz "Farbar Recovery Scan"

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02.08.2018
Ran by Scar (administrator) on SCAR-PC (12-08-2018 14:43:48)
Running from C:\Users\Scar\Downloads
Loaded Profiles: Scar (Available Profiles: Scar)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(Popcorn Time) C:\Program Files (x86)\Popcorn Time\Updater.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
() C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\\Lightshot.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(House of Life) C:\Program Files (x86)\BitLord\BitLord.exe
() C:\Program Files (x86)\BitLord\QtWebEngineProcess.exe
() C:\Program Files (x86)\BitLord\QtWebEngineProcess.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [225944 2017-04-11] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [653648 2018-06-27] (Oracle Corporation)
HKU\S-1-5-21-366130679-3781666311-3630265831-1000\...\Run: [SideSync] => C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe [12477600 2017-10-26] ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer]
Tcpip\..\Interfaces\{F8D17F41-E6BB-4696-9A90-02245065B2B1}: [DhcpNameServer]

Internet Explorer:
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre-10.0.2\bin\ssv.dll => No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre-10.0.2\bin\jp2ssv.dll [2018-08-10] (Oracle Corporation)

FF DefaultProfile: c8w8zja0.default
FF ProfilePath: C:\Users\Scar\AppData\Roaming\Mozilla\Firefox\Profiles\c8w8zja0.default [2018-08-11]
FF Plugin:,version= -> C:\Program Files\Java\jre-10.0.2\bin\dtplugin\npDeployJava1.dll [2018-08-10] (Oracle Corporation)
FF Plugin:,version= -> C:\Program Files\Java\jre-10.0.2\bin\plugin2\npjp2.dll [2018-08-10] (Oracle Corporation)
FF Plugin: -> disabled [No File]
FF Plugin:,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-02-27] (VideoLAN)
FF Plugin-x32: -> disabled [No File]
FF Plugin-x32: Update;version=3 -> C:\Program Files (x86)\Google\Update\\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin-x32: Update;version=9 -> C:\Program Files (x86)\Google\Update\\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-06-29] (Adobe Systems Inc.)

CHR Profile: C:\Users\Scar\AppData\Local\Google\Chrome\User Data\Default [2018-08-12]
CHR Extension: (Slides) - C:\Users\Scar\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-04-15]
CHR Extension: (Docs) - C:\Users\Scar\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-04-15]
CHR Extension: (Google Drive) - C:\Users\Scar\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-04-15]
CHR Extension: (YouTube) - C:\Users\Scar\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-04-15]
CHR Extension: (Adblock Plus) - C:\Users\Scar\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2018-07-18]
CHR Extension: (Adobe Acrobat) - C:\Users\Scar\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2018-04-15]
CHR Extension: (Sheets) - C:\Users\Scar\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-04-15]
CHR Extension: (Google Docs Offline) - C:\Users\Scar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-04-15]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Scar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-15]
CHR Extension: (Gmail) - C:\Users\Scar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-04-15]
CHR Extension: (Chrome Media Router) - C:\Users\Scar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-08-10]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-03-29] (Apple Inc.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3639400 2018-03-21] (Disc Soft Ltd)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-09] (Malwarebytes)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2018-04-16] ()
R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-03] (DEVGURU Co., LTD.)
R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2017-10-17] (Popcorn Time) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2018-04-15] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2018-04-15] (Disc Soft Ltd)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-08-12 14:38 - 2018-08-12 14:38 - 000026798 _____ C:\Users\Scar\Downloads\Addition.txt
2018-08-12 14:37 - 2018-08-12 14:44 - 000009372 _____ C:\Users\Scar\Downloads\FRST.txt
2018-08-12 14:37 - 2018-08-12 14:43 - 000000000 ____D C:\FRST
2018-08-12 14:36 - 2018-08-12 14:36 - 002412544 _____ (Farbar) C:\Users\Scar\Downloads\FRST64.exe
2018-08-12 12:23 - 2018-08-12 12:23 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\5147E2C3.sys
2018-08-12 12:22 - 2018-08-12 12:33 - 000000000 ____D C:\Users\Scar\Desktop\mbar
2018-08-12 12:22 - 2018-08-12 12:33 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2018-08-12 12:21 - 2018-08-12 12:22 - 014178840 _____ (Malwarebytes Corp.) C:\Users\Scar\Downloads\mbar-
2018-08-12 12:19 - 2018-08-12 12:19 - 000291606 _____ C:\Users\Scar\Downloads\
2018-08-12 12:19 - 2011-07-25 12:40 - 000300832 _____ (Sysinternals - C:\Users\Scar\Downloads\Tcpview.exe
2018-08-12 12:19 - 2010-07-28 15:47 - 000199544 ____N (Sysinternals - C:\Users\Scar\Downloads\Tcpvcon.exe
2018-08-12 12:19 - 2010-07-02 16:03 - 000041074 ____N C:\Users\Scar\Downloads\tcpview.chm
2018-08-12 12:19 - 2006-07-28 09:32 - 000007005 ____N C:\Users\Scar\Downloads\Eula.txt
2018-08-12 12:19 - 2002-09-02 13:13 - 000007983 ____N C:\Users\Scar\Downloads\TCPVIEW.HLP
2018-08-08 19:38 - 2018-08-08 19:38 - 000569536 _____ C:\Windows\Minidump\080818-15428-01.dmp
2018-08-01 23:13 - 2018-08-11 19:07 - 000000000 ____D C:\Users\Scar\AppData\LocalLow\Mozilla
2018-08-01 23:13 - 2018-08-01 23:19 - 000000000 ____D C:\Users\Scar\AppData\Local\Mozilla
2018-08-01 23:13 - 2018-08-01 23:13 - 000001159 _____ C:\Users\Scar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-08-01 23:13 - 2018-08-01 23:13 - 000001151 _____ C:\Users\Scar\Desktop\Firefox.lnk
2018-08-01 23:13 - 2018-08-01 23:13 - 000000936 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-08-01 23:13 - 2018-08-01 23:13 - 000000924 _____ C:\Users\Public\Desktop\Firefox.lnk
2018-08-01 23:13 - 2018-08-01 23:13 - 000000000 ____D C:\Users\Scar\AppData\Roaming\Mozilla
2018-08-01 23:13 - 2018-08-01 23:13 - 000000000 ____D C:\Users\Scar\AppData\Local\Mozilla Firefox
2018-08-01 23:13 - 2018-08-01 23:13 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-08-01 23:13 - 2018-08-01 23:13 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-07-24 20:14 - 2018-07-24 20:14 - 000569768 _____ C:\Windows\Minidump\072418-17238-01.dmp
2018-07-22 16:30 - 2018-07-22 16:30 - 000556944 _____ C:\Windows\Minidump\072218-15943-01.dmp
2018-07-20 00:20 - 2018-07-20 00:20 - 000569448 _____ C:\Windows\Minidump\072018-25209-01.dmp
2018-07-19 00:24 - 2018-07-19 00:24 - 000305456 _____ C:\Windows\Minidump\071918-17893-01.dmp
2018-07-18 20:01 - 2018-07-18 20:02 - 000305312 _____ C:\Windows\Minidump\071818-16863-01.dmp
2018-07-18 00:41 - 2018-07-18 00:41 - 000305152 _____ C:\Windows\Minidump\071818-14820-01.dmp
2018-07-16 20:00 - 2018-07-16 20:01 - 000000000 ____D C:\Users\Scar\Desktop\1708

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-08-12 12:28 - 2009-07-14 05:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2018-08-12 12:23 - 2018-06-07 01:51 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-08-12 12:20 - 2009-07-14 06:45 - 000026576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-08-12 12:20 - 2009-07-14 06:45 - 000026576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-08-12 12:10 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-08-12 00:02 - 2018-04-15 15:22 - 000000386 _____ C:\Windows\Tasks\update-sys.job
2018-08-11 23:05 - 2018-04-15 15:22 - 000000386 _____ C:\Windows\Tasks\update-S-1-5-21-366130679-3781666311-3630265831-1000.job
2018-08-10 17:40 - 2018-04-16 21:38 - 000214520 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2018-08-10 17:40 - 2018-04-16 21:36 - 000214520 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2018-08-10 17:19 - 2018-04-16 21:36 - 000214520 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2018-08-10 11:37 - 2018-04-15 16:05 - 000003668 _____ C:\Windows\System32\Tasks\JavaUpdateSched
2018-08-10 11:37 - 2018-04-15 16:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-08-10 11:37 - 2018-04-15 16:04 - 000000000 ____D C:\Program Files\Java
2018-08-10 11:36 - 2018-04-15 16:05 - 000145272 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2018-08-10 00:03 - 2018-04-15 15:27 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-08-10 00:03 - 2018-04-15 15:27 - 000002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-08-08 19:38 - 2018-04-16 18:42 - 327352512 _____ C:\Windows\MEMORY.DMP
2018-08-08 19:38 - 2018-04-15 16:48 - 000000000 ____D C:\Windows\Minidump
2018-08-06 17:53 - 2009-07-14 07:08 - 000032612 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2018-08-03 18:37 - 2009-07-14 07:13 - 000781298 _____ C:\Windows\system32\PerfStringBackup.INI
2018-08-03 18:37 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2018-08-03 18:34 - 2018-05-08 18:59 - 000000000 ____D C:\Users\Scar\Downloads\dw
2018-07-27 00:09 - 2018-04-15 16:35 - 000765280 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2018-07-26 18:09 - 2018-05-26 19:21 - 000000000 ____D C:\Users\Scar\Desktop\New folder
2018-07-23 02:29 - 2018-04-15 16:41 - 000000000 ____D C:\ProgramData\DAEMON Tools Lite
2018-07-23 02:29 - 2018-04-15 15:13 - 000000000 ____D C:\Users\Scar
2018-07-23 02:29 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\registration
2018-07-17 00:02 - 2010-11-21 05:27 - 000563832 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2018-07-15 23:13 - 2018-05-20 23:15 - 000000000 ____D C:\Program Files (x86)\Steam

==================== Files in the root of some directories =======

2018-04-15 15:22 - 2018-04-15 15:22 - 000000003 _____ () C:\Users\Scar\AppData\Local\updater.log
2018-04-15 15:22 - 2018-04-15 15:22 - 000000425 _____ () C:\Users\Scar\AppData\Local\UserProducts.xml

Some files in TEMP:
2017-08-17 16:50 - 2017-08-17 16:50 - 001132736 _____ () C:\Users\Scar\AppData\Local\Temp\AppInstaller.exe
2018-04-21 16:51 - 2018-04-21 16:52 - 077193768 _____ () C:\Users\Scar\AppData\Local\Temp\bitlord-silent.exe
2018-04-15 16:38 - 2018-04-15 16:39 - 030191568 _____ (Disc Soft Ltd) C:\Users\Scar\AppData\Local\Temp\DTLite1080-0401_split.exe
2018-04-20 11:36 - 2018-04-20 11:36 - 002319304 _____ (Oracle Corporation) C:\Users\Scar\AppData\Local\Temp\jre-10.0.1+10_windows-x64_bin-au.exe
2018-08-10 11:34 - 2018-08-10 11:34 - 002346360 _____ (Oracle Corporation) C:\Users\Scar\AppData\Local\Temp\jre-10.0.2+13_windows-x64_bin-au.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-08-06 18:20

==================== End of FRST.txt ============================

  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Preuzmi Malwarebytes Anti-Malware sa ovog ili ovog ili ovog linka i instaliraj aplikaciju.
Pokreni mb3-setup-consumer-{verzija}.exe i isprati uputstva za instalaciju programa. Nakon instalacije, klikni na Finish

Prilikom prvog pokretanja, program će prikazati prozor "dobrodošlice". Slobodno zatvori taj prozor.
Napomena: Premium funkcije programa su već aktivirane i važe 13 dana od trenutka instalacije. Premium funkcije možeš isključiti preko Settings > My Account tab podešavanja.

• Podešavanja skenera - u Settings, klikni na Protection tab. Ispod Scan Options sekcije, uključi "Scan for rootkits" opciju.
• Pripremi podešavanja za Threat Scan - u Dashboard , klikni na Scan Now dugme. MBAM će ažurirati bazu i započeti skeniranje.

Kada se skeniranje završi, ako je infekcija detektovana, obrati pažnju da je sve označeno, pa klikni na Remove Selected. Restartuj računar ako program upita za restart.
• Dostavi log: Pod Reports izaberi trenutni datum izveštaja Scan Report i potom klikni na View Report.

Izvezi log na Desktop;
- Klikni na Export dugme na dnu, pa onda izaberi 'Text file (*.txt)'
# U Save File dijalogu koji se pojavi, klikni na Desktop. U File name: polje, upiši "mbam" (bez navodnika) i klikni na Save.
- Pojaviće se poruka "Your file has been successfully exported", klikni Ok i zatvori prozor.

• U odgovoru prikači mbam.txt log koristeći "Prikači fajl" opciju.

  • Pridružio: 29 Apr 2017
  • Poruke: 13

  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Sistem ti je čist što se malwarea tiče iako nemaš AV program instaliran. Da li si siguran da te objave na koje se nisi pretplatio nisu sponzorisane objavae, tj. reklame na facebooku i Instagramu?

  • Pridružio: 29 Apr 2017
  • Poruke: 13

Jel' ima još koji način da to provjerim jer u event vieweru mi ima tu nekih najasnoca jel kod ove opcije "application" ..

  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Nema. To jedino možeš vidjeti kad vidiš na Facebooku nešto što ne pratiš. Event Viewer je za druge stvari.

