Poslao: 25 Jan 2016 01:40
|
offline
- no_way_f
- Građanin
- Pridružio: 22 Feb 2012
- Poruke: 35
|
Napisano: 25 Jan 2016 1:33
..znaci ovako...jedini problem je to sho kad pustim neki video na Youtube zvuk je mnogo mali...skoro ne cuje se ...a sve preko google chroma!!!!
probala sam preko drugi browser Zvuk je e u redu!!!
Deinstalirala sam Browser...novi Flash player..i opet isto..slabiji zvuk na CHROME...
Dopuna: 25 Jan 2016 1:40
mycity.rs/must-login.png
mycity.rs/must-login.png
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:24-01-2016
Ran by lidija (administrator) on LIDE (25-01-2016 01:38:48)
Running from C:\Users\lidija\Desktop
Loaded Profiles: lidija (Available Profiles: lidija)
Platform: Windows 8.1 Pro (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(WiseCleaner.com) C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(MyCity) C:\Program Files (x86)\MCShield\MCShieldRTM.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(The Chromium Authors) C:\Users\lidija\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\lidija\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\lidija\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\lidija\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\lidija\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\lidija\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\lidija\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\lidija\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\lidija\AppData\Local\Chromium\Application\chrome.exe
(QuestSoft) C:\Program Files (x86)\QTranslate\QTranslate.exe
(The Chromium Authors) C:\Users\lidija\AppData\Local\Chromium\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2655520 2015-10-12] (NVIDIA Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16404224 2015-09-17] (Realtek Semiconductor)
HKU\S-1-5-21-209806510-4016549201-2669711668-1003\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4468056 2015-06-18] (Disc Soft Ltd)
HKU\S-1-5-21-209806510-4016549201-2669711668-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8461224 2015-09-16] (Piriform Ltd)
HKU\S-1-5-21-209806510-4016549201-2669711668-1003\...\Run: [MCShield Monitor] => C:\Program Files (x86)\MCShield\mcshieldrtm.exe [650816 2014-04-11] (MyCity)
HKU\S-1-5-21-209806510-4016549201-2669711668-1003\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-209806510-4016549201-2669711668-1003\...\MountPoints2: {e8e67d68-7be2-11e5-8265-d05099382a9d} - "F:\DriverPackSolution.exe"
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{E9BDE683-5367-456F-A4BE-541FFB3EC347}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-209806510-4016549201-2669711668-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=U270&ocid=U270DHP&osmkt=en-ww
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-01-23] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-10-24] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2014-01-23] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-24] (Oracle Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2014-01-21] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2016-01-24] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2014-01-21] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2016-01-24] (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2014-01-23] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
FireFox:
========
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-11-18] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-11-18] (Foxit Corporation)
FF Plugin: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-10-24] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-10-24] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.31211.0\npctrl.dll [2014-12-11] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-11-18] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-11-18] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-11-18] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-11-18] (Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2016-01-24] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2016-01-24] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.31211.0\npctrl.dll [2014-12-11] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-11-05] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-11-05] (NVIDIA Corporation)
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 ASGT; C:\Windows\SysWOW64\ASGT.exe [55296 2012-01-17] () [File not signed]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2505472 2015-10-09] (ESET)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1156384 2015-10-12] (NVIDIA Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1873696 2015-10-12] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5568288 2015-10-12] (NVIDIA Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
S2 WiseBootAssistant; C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [580144 2015-08-06] (WiseCleaner.com)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-10-25] (Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [264040 2015-07-30] (ESET)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [14976 2015-07-30] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [186784 2015-07-30] (ESET)
R2 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [170792 2015-07-30] (ESET)
S3 h647906; C:\Windows\System32\drivers\h647906.sys [63856 2008-08-08] (Your Corporation)
S3 h648101; C:\Windows\System32\drivers\h648101.sys [65776 2008-08-08] (Your Corporation)
S3 h648103; C:\Windows\System32\drivers\h648103.sys [62960 2008-08-08] (Your Corporation)
S3 hid7906; C:\Windows\SysWOW64\drivers\hid7906.sys [41272 2008-08-08] (Your Corporation)
S3 hid8101; C:\Windows\SysWOW64\drivers\hid8101.sys [43192 2008-08-08] (Your Corporation)
S3 hid8103; C:\Windows\SysWOW64\drivers\hid8103.sys [40856 2008-08-08] (Your Corporation)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [184608 2015-07-28] (Intel Corporation)
S3 NVFLASH; C:\Windows\system32\drivers\nvflash.sys [15648 2013-04-19] ()
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20768 2015-10-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S3 WiseHDInfo; C:\Windows\WiseHDInfo64.dll [14800 2016-01-04] (wisecleaner.com)
U4 epfw; \SystemRoot\system32\DRIVERS\epfw.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-01-25 01:38 - 2016-01-25 01:39 - 00014301 _____ C:\Users\lidija\Desktop\FRST.txt
2016-01-25 01:38 - 2016-01-25 01:38 - 02370560 _____ (Farbar) C:\Users\lidija\Desktop\FRST64.exe
2016-01-25 01:38 - 2016-01-25 01:38 - 00000000 ____D C:\FRST
2016-01-25 01:35 - 2016-01-25 01:38 - 00004912 _____ C:\DelFix.txt
2016-01-25 01:27 - 2016-01-25 01:27 - 00000000 ____D C:\Users\lidija\AppData\Local\Google
2016-01-25 00:27 - 2016-01-25 00:26 - 00000030 _____ C:\AVScanner.ini
2016-01-25 00:26 - 2016-01-25 00:26 - 00000000 ____D C:\ProgramData\McAfee
2016-01-25 00:15 - 2016-01-25 00:15 - 01190608 _____ (Adobe Systems Incorporated) C:\Users\lidija\Downloads\flashplayer20_ha_install.exe
2016-01-25 00:15 - 2016-01-25 00:15 - 00927824 _____ (Google Inc.) C:\Users\lidija\Downloads\ChromeSetup (1).exe
2016-01-25 00:13 - 2016-01-25 00:13 - 01163968 _____ (Adobe Systems Incorporated) C:\Users\lidija\Downloads\uninstall_flash_player.exe
2016-01-25 00:12 - 2016-01-25 00:12 - 00000000 ____D C:\Users\lidija\AppData\Roaming\Macromedia
2016-01-25 00:04 - 2016-01-25 00:09 - 00000000 ____D C:\ProgramData\MCShield
2016-01-25 00:04 - 2016-01-25 00:04 - 02856736 _____ (MyCity) C:\Users\lidija\Downloads\MCShield-Setup.exe
2016-01-25 00:04 - 2016-01-25 00:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCShield
2016-01-25 00:04 - 2016-01-25 00:04 - 00000000 ____D C:\Program Files (x86)\MCShield
2016-01-24 23:45 - 2016-01-24 23:45 - 00927824 _____ (Google Inc.) C:\Users\lidija\Downloads\ChromeSetup.exe
2016-01-24 17:04 - 2016-01-25 00:29 - 00000000 ____D C:\Users\lidija\AppData\Local\Adobe
2016-01-24 16:24 - 2016-01-24 16:24 - 43704320 _____ (The Chromium Authors) C:\Users\lidija\Downloads\mini_installer.exe
2016-01-24 16:24 - 2016-01-24 16:24 - 00002341 _____ C:\Users\lidija\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromium.lnk
2016-01-24 16:24 - 2016-01-24 16:24 - 00000000 ____D C:\Users\lidija\AppData\Local\Chromium
2016-01-24 16:20 - 2016-01-25 00:24 - 00000000 ____D C:\Program Files (x86)\Google
2016-01-24 16:20 - 2016-01-24 16:20 - 00000000 ____D C:\Users\lidija\AppData\Local\Deployment
2016-01-24 16:20 - 2016-01-24 16:20 - 00000000 ____D C:\Users\lidija\AppData\Local\Apps\2.0
2016-01-24 16:19 - 2016-01-24 16:19 - 00000000 ____D C:\Users\lidija\AppData\Roaming\Adobe
2016-01-24 16:07 - 2016-01-24 16:07 - 00000000 ____D C:\Users\lidija\Documents\GTA San Andreas User Files
2016-01-24 16:07 - 2016-01-24 16:07 - 00000000 ____D C:\Users\lidija\AppData\Roaming\DAEMON Tools Lite
2016-01-24 16:07 - 2016-01-24 16:07 - 00000000 ____D C:\Users\lidija\AppData\Local\VirtualStore
2016-01-24 16:05 - 2016-01-24 16:06 - 05037232 _____ C:\Windows\system32\FNTCACHE.DAT
2016-01-24 15:23 - 2016-01-24 15:50 - 00000000 ____D C:\Windows\Panther
2016-01-24 02:21 - 2016-01-24 02:21 - 00000000 ____D C:\Users\lidija\Downloads\DriverEasy Professional v4.9.6.35549 (x86-x64)
2016-01-24 02:03 - 2016-01-24 02:03 - 03771784 _____ (Easeware ) C:\Users\lidija\Downloads\DriverEasy_Setup.exe
2016-01-24 01:54 - 2016-01-24 01:54 - 00000000 ____D C:\Users\lidija\AppData\Roaming\PotPlayerMini
2016-01-24 01:54 - 2016-01-24 01:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2016-01-24 01:53 - 2016-01-24 01:53 - 00000000 ____D C:\Program Files (x86)\Foxit Software
2016-01-24 01:51 - 2016-01-24 01:50 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-01-24 01:50 - 2016-01-24 01:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-01-24 01:50 - 2016-01-24 01:50 - 00000000 ____D C:\Program Files (x86)\Java
2016-01-24 01:49 - 2016-01-24 01:49 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-01-24 01:49 - 2016-01-24 01:49 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-01-24 01:48 - 2016-01-24 03:36 - 00000000 ____D C:\Windows\SysWOW64\Adobe
2016-01-24 01:48 - 2016-01-24 02:06 - 00000082 _____ C:\Windows\SysWOW64\winsevr.dat
2016-01-24 01:48 - 2016-01-24 01:48 - 00000000 ____D C:\ProgramData\AomeiBR
2016-01-24 01:48 - 2013-05-07 14:27 - 00151480 _____ C:\Windows\system32\ammntdrv.sys
2016-01-24 01:48 - 2013-05-07 14:27 - 00030648 _____ C:\Windows\system32\ambakdrv.sys
2016-01-24 01:48 - 2013-02-06 15:52 - 00017848 _____ C:\Windows\system32\amwrtdrv.sys
2016-01-24 01:47 - 2016-01-24 01:48 - 00000000 ____D C:\Program Files (x86)\SAM CoDeC Pack
2016-01-24 01:47 - 2016-01-24 01:47 - 00000000 ____D C:\Windows\SysWOW64\Backup
2016-01-24 01:47 - 2016-01-24 01:47 - 00000000 ____D C:\Windows\system32\Backup
2016-01-24 01:47 - 2012-08-29 16:45 - 00258560 _____ C:\Windows\system32\xvidvfw.dll
2016-01-24 01:47 - 2012-08-29 16:43 - 00174592 _____ C:\Windows\system32\xvid.ax
2016-01-24 01:47 - 2012-08-29 16:34 - 00704000 _____ C:\Windows\system32\xvidcore.dll
2016-01-23 22:54 - 2016-01-24 23:21 - 00000000 ____D C:\Users\lidija\Downloads\Ono što misliš to i postaješ
2016-01-22 20:57 - 2016-01-22 20:57 - 00000326 _____ C:\Users\lidija\AppData\Local\SnipUsages.txt
2016-01-22 19:51 - 2016-01-22 19:59 - 00000000 ____D C:\Users\lidija\Documents\My Snips
2016-01-20 00:52 - 2016-01-20 00:52 - 00000000 ____D C:\Program Files\Reason
2016-01-17 09:44 - 2016-01-17 09:44 - 00001037 _____ C:\Users\lidija\Documents\за волан.txt
2016-01-15 20:01 - 2016-01-15 20:01 - 00000000 ____D C:\Windows\USB Vibration
2016-01-15 20:01 - 2016-01-15 20:01 - 00000000 ____D C:\Program Files (x86)\USB Vibration
2016-01-15 20:01 - 2008-08-08 15:33 - 00008316 _____ C:\Windows\SysWOW64\Drivers\hid8103.cat
2016-01-15 20:01 - 2008-08-08 15:33 - 00008316 _____ C:\Windows\SysWOW64\Drivers\hid8101.cat
2016-01-15 20:01 - 2008-08-08 15:33 - 00008316 _____ C:\Windows\SysWOW64\Drivers\hid7906.cat
2016-01-15 20:01 - 2008-08-08 15:31 - 00065776 _____ (Your Corporation) C:\Windows\system32\Drivers\h648101.sys
2016-01-15 20:01 - 2008-08-08 15:31 - 00063856 _____ (Your Corporation) C:\Windows\system32\Drivers\h647906.sys
2016-01-15 20:01 - 2008-08-08 15:31 - 00062960 _____ (Your Corporation) C:\Windows\system32\Drivers\h648103.sys
2016-01-15 20:01 - 2008-08-08 15:31 - 00043192 _____ (Your Corporation) C:\Windows\SysWOW64\Drivers\hid8101.sys
2016-01-15 20:01 - 2008-08-08 15:31 - 00041272 _____ (Your Corporation) C:\Windows\SysWOW64\Drivers\hid7906.sys
2016-01-15 20:01 - 2008-08-08 15:31 - 00040856 _____ (Your Corporation) C:\Windows\SysWOW64\Drivers\hid8103.sys
2016-01-15 20:01 - 2007-11-12 15:28 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\USBGAMEPAD.cpl
2016-01-15 19:52 - 2016-01-15 19:52 - 00000000 ____D C:\Windows\USB_Vibration
2016-01-15 19:51 - 2016-01-15 19:51 - 00000000 ____D C:\Program Files (x86)\USB_Vibration
2016-01-05 03:09 - 2016-01-05 03:09 - 00000000 ____D C:\Users\lidija\AppData\Roaming\QTranslate
2016-01-05 03:02 - 2016-01-05 03:02 - 00000064 _____ C:\Users\lidija\Documents\zzzxxxxx.txt
2016-01-04 15:22 - 2016-01-04 15:22 - 00000000 ____D C:\Users\lidija\AppData\Local\Remove_Empty_Directories
2016-01-04 15:15 - 2016-01-04 15:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Remove Empty Directories
2016-01-04 15:15 - 2016-01-04 15:15 - 00000000 ____D C:\Program Files (x86)\Remove Empty Directories
2016-01-04 14:40 - 2016-01-05 11:29 - 00000000 ____D C:\ProgramData\Auslogics
2016-01-04 14:40 - 2016-01-05 11:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics
2016-01-04 14:40 - 2016-01-05 11:27 - 00000000 ____D C:\Program Files (x86)\Auslogics
2016-01-04 14:36 - 2016-01-24 15:50 - 00000000 ____D C:\Users\lidija\AppData\Local\qBittorrent
2016-01-04 14:36 - 2016-01-24 02:53 - 00000000 ____D C:\Users\lidija\AppData\Roaming\qBittorrent
2016-01-04 14:36 - 2016-01-04 14:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2016-01-04 14:36 - 2016-01-04 14:36 - 00000000 ____D C:\Program Files (x86)\qBittorrent
2016-01-04 14:30 - 2016-01-25 00:08 - 00000412 _____ C:\Windows\Tasks\Wise Care 365.job
2016-01-04 14:30 - 2016-01-21 14:00 - 00000440 _____ C:\Windows\Tasks\Wise Turbo Checker.job
2016-01-04 14:30 - 2016-01-04 14:30 - 00003090 _____ C:\Windows\System32\Tasks\Wise Turbo Checker
2016-01-04 14:30 - 2016-01-04 14:30 - 00002820 _____ C:\Windows\System32\Tasks\Wise Care 365
2016-01-04 14:27 - 2016-01-04 14:34 - 00000000 ____D C:\Windows\System32\Tasks\WiseCleaner
2016-01-04 14:23 - 2016-01-24 15:27 - 00000000 ____D C:\Users\lidija\AppData\Roaming\Wise Care 365
2016-01-04 14:23 - 2016-01-04 14:34 - 00000000 ____D C:\Program Files (x86)\Wise
2016-01-04 14:23 - 2016-01-04 14:23 - 00014800 _____ (wisecleaner.com) C:\Windows\WiseHDInfo64.dll
2016-01-04 14:23 - 2016-01-04 14:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Care 365
2016-01-04 14:22 - 2016-01-04 14:22 - 00000000 ____D C:\Users\lidija\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\QTranslate
2016-01-04 14:22 - 2016-01-04 14:22 - 00000000 ____D C:\Program Files (x86)\QTranslate
2016-01-04 13:16 - 2016-01-04 13:25 - 00000000 ____D C:\Users\lidija\AppData\LocalLow\uTorrent
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-01-25 01:38 - 2013-08-22 14:36 - 00000000 ____D C:\Windows
2016-01-25 00:31 - 2015-11-17 14:16 - 00004944 _____ C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for LIDE-lidija lide
2016-01-25 00:29 - 2015-10-24 20:58 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-209806510-4016549201-2669711668-1003
2016-01-25 00:14 - 2014-11-21 08:38 - 00863592 _____ C:\Windows\system32\PerfStringBackup.INI
2016-01-25 00:14 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\Inf
2016-01-25 00:08 - 2015-10-24 20:57 - 00000000 __RDO C:\Users\lidija\OneDrive
2016-01-25 00:07 - 2015-10-24 21:05 - 00000000 ____D C:\ProgramData\NVIDIA
2016-01-25 00:07 - 2013-08-22 15:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-01-25 00:07 - 2013-08-22 14:25 - 00524288 ___SH C:\Windows\system32\config\BBI
2016-01-25 00:05 - 2015-10-26 01:42 - 00417792 ___SH C:\Users\lidija\Documents\Thumbs.db
2016-01-24 16:48 - 2015-10-24 20:50 - 00000000 ____D C:\Users\lidija
2016-01-24 16:19 - 2015-10-24 20:59 - 00003770 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{C9802A2B-3FCC-4D96-8677-51F1F797023B}
2016-01-24 16:15 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\AppReadiness
2016-01-24 16:10 - 2015-10-24 20:52 - 00000000 ____D C:\Users\lidija\AppData\Local\Packages
2016-01-24 16:10 - 2013-08-22 16:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-01-24 15:51 - 2015-10-25 00:42 - 00000000 ____D C:\Users\lidija\AppData\Roaming\Skype
2016-01-24 15:47 - 2015-12-05 22:54 - 00000000 ____D C:\Users\lidija\Documents\lide USB
2016-01-24 15:27 - 2015-10-24 23:45 - 06047232 ___SH C:\Users\lidija\Desktop\Thumbs.db
2016-01-24 03:36 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-01-24 01:56 - 2015-10-25 00:41 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-01-24 01:56 - 2015-10-25 00:41 - 00000000 ____D C:\ProgramData\Skype
2016-01-24 01:51 - 2015-01-15 12:24 - 00000000 ____D C:\Program Files\Java
2016-01-22 20:57 - 2015-10-25 00:56 - 00170676 _____ C:\Users\lidija\AppData\Local\Snip.txt
2016-01-17 10:31 - 2015-10-27 16:33 - 00000000 ____D C:\Users\lidija\AppData\Roaming\NVIDIA
2016-01-17 10:13 - 2015-10-25 19:59 - 02628096 ___SH C:\Users\lidija\Downloads\Thumbs.db
2016-01-15 20:01 - 2015-10-24 21:13 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-01-05 13:19 - 2015-10-24 23:05 - 00000000 ____D C:\Users\lidija\AppData\Roaming\Winamp
2016-01-04 15:21 - 2015-11-22 01:44 - 00000000 ____D C:\Users\lidija\AppData\Roaming\BSplayer PRO
2016-01-04 14:24 - 2015-11-08 11:28 - 00000000 __RHD C:\MSOCache
2016-01-04 14:23 - 2013-08-22 16:36 - 00000000 ___SD C:\Windows\Downloaded Program Files
2016-01-04 14:03 - 2015-10-24 21:13 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-01-04 13:21 - 2015-10-24 22:14 - 00000000 ____D C:\Program Files\CCleaner
==================== Files in the root of some directories =======
2015-11-29 20:39 - 2015-11-29 20:40 - 0000581 _____ () C:\Users\lidija\AppData\Roaming\burnaware.ini
2015-12-20 02:51 - 2015-12-20 02:51 - 0000017 _____ () C:\Users\lidija\AppData\Local\resmon.resmoncfg
2015-10-25 00:56 - 2016-01-22 20:57 - 0170676 _____ () C:\Users\lidija\AppData\Local\Snip.txt
2016-01-22 20:57 - 2016-01-22 20:57 - 0000326 _____ () C:\Users\lidija\AppData\Local\SnipUsages.txt
2015-11-08 00:56 - 2015-11-08 00:56 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Some files in TEMP:
====================
C:\Users\lidija\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-01-15 08:53
==================== End of FRST.txt ============================
|
|
|
|
Poslao: 25 Jan 2016 11:33
|
offline
- TwinHeadedEagle
- Anti Malware Fighter
Rank 2
- Pridružio: 09 Avg 2011
- Poruke: 15879
- Gde živiš: Beograd
|
Pozdrav,
Da, prisutan je tu malware, ali nista strasno.
Za pocetak zeleo bih da uploadujes fajlove koje cu navesti na sledeci link:
http://www.mycity.rs/ambulanta-upload.php
C:\Users\lidija\Downloads\mini_installer.exe
Javi mi kada to zavrsis.
Zatim deinstaliraj ovaj program:
Chromium
Poslednji korak:
1. Otvori Notepad (Text Document) i iskopiraj sledeæi tekst unutar kod polja ispod:
createrestorepoint:
closeprocesses:
emptytemp:
HKU\S-1-5-21-209806510-4016549201-2669711668-1003\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-209806510-4016549201-2669711668-1003\...\MountPoints2: {e8e67d68-7be2-11e5-8265-d05099382a9d} - "F:\DriverPackSolution.exe"
2016-01-24 16:24 - 2016-01-24 16:24 - 43704320 _____ (The Chromium Authors) C:\Users\lidija\Downloads\mini_installer.exe
2016-01-24 16:24 - 2016-01-24 16:24 - 00002341 _____ C:\Users\lidija\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromium.lnk
2016-01-24 16:24 - 2016-01-24 16:24 - 00000000 ____D C:\Users\lidija\AppData\Local\Chromium
2. Saèuvaj notepad na Desktop pod nazivom fixlist.txt
To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt
Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi.
3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i saèekaj.
Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema.
Alat æe formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku.
Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a.
|
|
|
|
Poslao: 25 Jan 2016 12:10
|
offline
- no_way_f
- Građanin
- Pridružio: 22 Feb 2012
- Poruke: 35
|
Napisano: 25 Jan 2016 11:56
mini installer e Browser Chromium ..taj nema veza sa zvuka..
instalira sam posle kad je neradio Chrome...
Dopuna: 25 Jan 2016 12:07
no_way_f ::mini installer e Browser Chromium ..taj nema veza sa zvuka..
instalira sam posle kad je neradio Chrome...
I ga nemam vise taj file vo download!
Dopuna: 25 Jan 2016 12:10
mycity.rs/must-login.png
|
|
|
|
Poslao: 25 Jan 2016 12:17
|
offline
- TwinHeadedEagle
- Anti Malware Fighter
Rank 2
- Pridružio: 09 Avg 2011
- Poruke: 15879
- Gde živiš: Beograd
|
Otvori ovaj folder:
C:\FRST\Quarantine\C\Users\lidija\Downloads
i nadji mini_installer.exe.xBAD
|
|
|
|
Poslao: 25 Jan 2016 12:32
|
offline
- no_way_f
- Građanin
- Pridružio: 22 Feb 2012
- Poruke: 35
|
ne mogu da uradim upload...nece I nece
ili nema vezeh vala ..ke vidim sta cu da radim..
|
|
|
|
|
|
Poslao: 25 Jan 2016 12:50
|
offline
- TwinHeadedEagle
- Anti Malware Fighter
Rank 2
- Pridružio: 09 Avg 2011
- Poruke: 15879
- Gde živiš: Beograd
|
Lazni jeste bio, valjda ja znam sta je malvare, a sta nije, ovakav identican problem sam resavao na desetine puta. Ali ako ti ne zelis pomoc, nema problema.
|
|
|
|
|
Poslao: 25 Jan 2016 12:59
|
offline
- TwinHeadedEagle
- Anti Malware Fighter
Rank 2
- Pridružio: 09 Avg 2011
- Poruke: 15879
- Gde živiš: Beograd
|
Ti si imala ovakve procese, evo ti pogledaj:
(The Chromium Authors) C:\Users\lidija\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\lidija\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\lidija\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\lidija\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\lidija\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\lidija\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\lidija\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\lidija\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\lidija\AppData\Local\Chromium\Application\chrome.exe
Kod mene na cistom racunaru, to izgleda ovako:
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Da li si preuzela Google Chrome sa linka koji sam ti dao?
|
|
|
|