Poslao: 25 Feb 2017 22:37
|
offline
- maha
- Super građanin
- Pridružio: 06 Dec 2006
- Poruke: 1152
|
Isao sam u antispam..i browsere..ali je ovo izgleda za ambulantu..a i hitno mi je ako moze neko da pogleda..uradio sam frst..
https://www.mycity.rs/must-login.png
https://www.mycity.rs/must-login.png
https://www.mycity.rs/must-login.png
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 25-02-2017
Ran by PC (administrator) on PC-PC (25-02-2017 22:26:39)
Running from C:\Users\PC\Desktop
Loaded Profiles: PC (Available Profiles: PC)
Platform: Windows 7 Ultimate (X64) Language: English (United States)
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
() C:\Windows\Temp\gD7C9.tmp.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
() C:\Users\PC\AppData\Local\Temp\{b78-2d-04-91498-84afd-c52a-5d3d2}\eN2HAOrIdI.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Facebook) C:\Users\PC\AppData\Local\Facebook\Games\FacebookGameroom.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
() C:\Users\PC\AppData\Roaming\Event Monitor\em.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\Ctxfihlp.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.1\Lightshot.exe
(Microleaves LTD) C:\Program Files (x86)\Microleaves\Traffic Exchange\Online-Guardian-v2.0.9.exe
(Microleaves LTD) C:\Program Files (x86)\Microleaves\Traffic Exchange\OnlineGuardian-v2.exe
(Microleaves LTD) C:\Program Files (x86)\Microleaves\Traffic Exchange\OnlineGuardian-v2.exe
(Microleaves LTD) C:\Program Files (x86)\Microleaves\Traffic Exchange\OnlineGuardian-v2.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\CTxfispi.exe
(Microleaves LTD) C:\Program Files (x86)\Microleaves\Traffic Exchange\Online-Guardian.exe
(Microleaves LTD) C:\Program Files (x86)\Microleaves\Traffic Exchange\Online-Guardian.exe
(Microleaves LTD) C:\Program Files (x86)\Microleaves\Traffic Exchange\Online-Guardian.exe
(The CefSharp Authors) C:\Users\PC\AppData\Local\Facebook\Games\Facebook Gameroom Browser.exe
(BitTorrent Inc.) C:\Users\PC\AppData\Roaming\uTorrent\uTorrent.exe
(BitTorrent Inc.) C:\Users\PC\AppData\Roaming\uTorrent\updates\3.4.9_43295\utorrentie.exe
(BitTorrent Inc.) C:\Users\PC\AppData\Roaming\uTorrent\updates\3.4.9_43295\utorrentie.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microleaves LTD) C:\Program Files (x86)\Microleaves\Traffic Exchange\Online-Guardian-v2.0.9.exe
(Microleaves LTD) C:\Program Files (x86)\Microleaves\Traffic Exchange\Online-Guardian-v2.0.9.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
==================== Registry (Whitelisted) ====================
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: Restriction - Chrome <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{55A639B5-31BA-424B-888E-BA8A2FE82741}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{86562B1A-2706-46FC-9446-04504B5F7CE0}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-2917841586-4204570114-2067478582-1000\Software\Microsoft\Internet Explorer\Main,Start Page =
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2016-12-10] (Internet Download Manager, Tonec Inc.)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-02-25] (AVAST Software)
BHO: Youtube AdBlock -> {95E84BD3-3604-4AAC-B2CA-D9AC3E55B64B} -> C:\Program Files (x86)\Youtube AdBlock\IEEF\3hjhkmz.dll [2017-02-25] ()
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2016-12-10] (Internet Download Manager, Tonec Inc.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-26] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-22] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-02-25] (AVAST Software)
BHO-x32: Youtube AdBlock -> {95E84BD3-3604-4AAC-B2CA-D9AC3E55B64B} -> C:\Program Files (x86)\Youtube AdBlock\IEEF\UCUKMkQQ.dll [2017-02-25] ()
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-22] (Oracle Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-14] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-14] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-14] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-14] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: id7p96dn.default
FF ProfilePath: C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\id7p96dn.default [2017-02-25]
FF Extension: (Adblock Plus) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\id7p96dn.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-02-25]
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-01-26]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF48 [2017-02-25]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: (ESET Smart Security Extension) - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2017-02-25] [not signed]
FF HKU\S-1-5-21-2917841586-4204570114-2067478582-1000\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF HKU\S-1-5-21-2917841586-4204570114-2067478582-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\PC\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\PC\AppData\Roaming\IDM\idmmzcc5 [2017-02-25] [not signed]
FF HKU\S-1-5-21-2917841586-4204570114-2067478582-1000\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_221.dll [2017-02-16] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_221.dll [2017-02-16] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-22] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-22] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-01-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-01-29] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2017-02-25] <==== ATTENTION
CHR Extension: (Docs) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2017-01-06]
CHR Extension: (Google Drive) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-01-06]
CHR Extension: (YouTube) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-06]
CHR Extension: (Adblocker for Youtube™) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\gndgngmogcnpkcbknmcgpnooljecgadk [2017-02-25]
CHR Extension: (IDM Integration Module) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2017-02-25]
CHR Extension: (Gmail) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-01-06]
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default [2017-02-25]
CHR Extension: (No Name) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-29]
CHR Extension: (No Name) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-29]
CHR Extension: (No Name) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-29]
CHR Extension: (No Name) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-21]
CHR Extension: (Adblocker for Youtube™) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gndgngmogcnpkcbknmcgpnooljecgadk [2017-02-25]
CHR Extension: (Chrome Web Store Payments) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-21]
CHR Extension: (No Name) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbdpajcdgknpendpmecafmopknefafha [2017-01-05]
CHR Extension: (No Name) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-29]
CHR Extension: (Chrome Media Router) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-12]
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-02-25]
CHR Extension: (Adblocker for Youtube™) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Guest Profile\Extensions\gndgngmogcnpkcbknmcgpnooljecgadk [2017-02-25]
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\System Profile [2017-02-25]
CHR Extension: (No Name) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\gndgngmogcnpkcbknmcgpnooljecgadk [2017-02-25]
CHR Extension: (No Name) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\pbdpajcdgknpendpmecafmopknefafha [2017-01-05]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2017-02-13]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2017-02-13]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7142136 2017-02-25] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [262736 2017-02-25] (AVAST Software)
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2016-07-09] (Creative Labs) [File not signed]
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720 2010-02-12] (Creative Technology Ltd) [File not signed]
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [810120 2010-04-07] (ESET)
S2 InstallerWrapperService; C:\Program Files\TrueKey\InstallerWrapperService.exe [47688 2016-07-19] (McAfee, Inc.)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2016-12-11] ()
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [309784 2017-02-25] (AVAST Software s.r.o.)
S3 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [189768 2017-02-25] (AVAST Software s.r.o.)
S3 aswblog; C:\Windows\system32\drivers\aswbloga.sys [334600 2017-02-25] (AVAST Software s.r.o.)
S3 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [48528 2017-02-25] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [38296 2017-02-25] (AVAST Software)
S3 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [32088 2017-02-25] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [126088 2017-02-25] (AVAST Software)
S3 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [100640 2017-02-25] (AVAST Software)
S0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [74680 2017-02-25] (AVAST Software)
S3 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [991496 2017-02-25] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [547904 2017-02-25] (AVAST Software)
S3 aswStm; C:\Windows\system32\drivers\aswStm.sys [162528 2017-02-25] (AVAST Software)
R3 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [337080 2017-02-25] (AVAST Software)
S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-08-16] (Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-08-16] (Disc Soft Ltd)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2016-10-09] (DT Soft Ltd)
R2 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [163888 2010-04-07] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [139704 2010-04-07] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [124760 2010-04-07] (ESET)
R3 RTL8023x64; C:\Windows\System32\DRIVERS\Rtnic64.sys [51712 2009-06-10] (Realtek Semiconductor Corporation )
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
U3 aswbdisk; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-02-25 22:26 - 2017-02-25 22:26 - 00030393 _____ C:\Users\PC\Desktop\FRST.txt
2017-02-25 22:24 - 2017-02-25 22:24 - 02423296 _____ (Farbar) C:\Users\PC\Desktop\FRST64.exe
2017-02-25 22:10 - 2017-02-25 22:10 - 00758912 _____ (ESET) C:\Users\PC\Downloads\esetuninstaller.exe
2017-02-25 21:46 - 2017-02-25 21:46 - 00002778 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2017-02-25 21:46 - 2017-02-25 21:46 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-02-25 21:46 - 2017-02-25 21:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-02-25 21:46 - 2017-02-25 21:46 - 00000000 ____D C:\Program Files\CCleaner
2017-02-25 21:26 - 2017-02-25 21:26 - 00000000 ____D C:\ProgramData\Microleaves
2017-02-25 21:25 - 2017-02-25 21:25 - 00003886 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1488054329
2017-02-25 21:25 - 2017-02-25 21:25 - 00001043 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-02-25 21:23 - 2017-02-25 21:23 - 00032088 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2017-02-25 21:20 - 2017-02-25 21:20 - 00001922 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2017-02-25 21:20 - 2017-02-25 21:20 - 00000000 ____D C:\Users\PC\AppData\Roaming\AVAST Software
2017-02-25 21:20 - 2017-02-25 21:20 - 00000000 ____D C:\ProgramData\SWCUTemp
2017-02-25 21:20 - 2017-02-25 21:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2017-02-25 21:19 - 2017-02-25 21:20 - 00337080 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys
2017-02-25 21:19 - 2017-02-25 21:19 - 00003914 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-02-25 21:19 - 2017-02-25 21:18 - 00547904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-02-25 21:19 - 2017-02-25 21:18 - 00398408 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-02-25 21:19 - 2017-02-25 21:18 - 00337080 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys.148805400241604
2017-02-25 21:19 - 2017-02-25 21:18 - 00162528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-02-25 21:19 - 2017-02-25 21:18 - 00126088 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-02-25 21:19 - 2017-02-25 21:18 - 00100640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-02-25 21:19 - 2017-02-25 21:18 - 00074680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-02-25 21:19 - 2017-02-25 21:18 - 00038296 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-02-25 21:19 - 2017-02-25 21:17 - 00991496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-02-25 21:19 - 2017-02-25 21:16 - 00334600 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-02-25 21:19 - 2017-02-25 21:16 - 00309784 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-02-25 21:19 - 2017-02-25 21:16 - 00189768 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-02-25 21:19 - 2017-02-25 21:16 - 00048528 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-02-25 21:14 - 2017-02-25 21:23 - 00000000 ____D C:\Program Files\AVAST Software
2017-02-25 21:08 - 2017-02-25 21:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-02-25 21:06 - 2017-02-25 21:08 - 06655120 _____ (AVAST Software) C:\Users\PC\Downloads\avast_free_antivirus_setup_online.exe
2017-02-25 21:03 - 2017-02-25 22:11 - 00000000 ____D C:\Program Files (x86)\Internet Download Manager
2017-02-25 21:03 - 2017-02-25 21:03 - 00001013 _____ C:\Users\PC\Desktop\Internet Download Manager.lnk
2017-02-25 21:03 - 2017-02-25 21:03 - 00000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2017-02-25 21:03 - 2017-02-25 21:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2017-02-25 21:01 - 2017-02-25 21:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-02-25 21:01 - 2017-02-25 21:01 - 00001163 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-02-25 21:01 - 2017-02-25 21:01 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-02-25 20:46 - 2017-02-25 20:46 - 00720152 _____ (ESET) C:\Windows\eins2595.dll
2017-02-25 20:46 - 2017-02-25 20:22 - 58256384 _____ C:\Windows\eins2595.msi
2017-02-25 20:32 - 2017-02-25 20:40 - 45380440 _____ C:\Users\PC\Downloads\Firefox Setup 52.0b8.exe
2017-02-25 20:02 - 2017-02-25 20:22 - 09261616 _____ (Piriform Ltd) C:\Users\PC\Downloads\ccsetup527.exe
2017-02-25 19:46 - 2017-02-25 20:09 - 00000150 _____ C:\Windows\Reimage.ini
2017-02-25 18:27 - 2017-02-25 22:22 - 00016718 _____ C:\Windows\System32\Tasks\67R6334T5501Y865-dll
2017-02-25 18:25 - 2017-02-25 21:11 - 00002998 _____ C:\Windows\System32\Tasks\RunAtStartup
2017-02-25 18:25 - 2017-02-25 21:11 - 00000000 ____D C:\Users\PC\AppData\Roaming\Event Monitor
2017-02-25 18:24 - 2017-02-25 22:27 - 00016718 _____ C:\Windows\System32\Tasks\67R6334T5501Y865
2017-02-25 18:24 - 2017-02-25 18:26 - 00000008 __RSH C:\ProgramData\ntuser.pol
2017-02-25 18:24 - 2017-02-25 18:24 - 00002872 _____ C:\Windows\System32\Tasks\Update Service for Youtube AdBlock2
2017-02-25 18:24 - 2017-02-25 18:24 - 00002570 _____ C:\Windows\System32\Tasks\Update Service for Youtube AdBlock
2017-02-25 18:24 - 2017-02-25 18:24 - 00000296 _____ C:\Windows\Tasks\Update Service for Youtube AdBlock2.job
2017-02-25 18:24 - 2017-02-25 18:24 - 00000296 _____ C:\Windows\Tasks\Update Service for Youtube AdBlock.job
2017-02-25 18:24 - 2017-02-25 18:24 - 00000000 ___HD C:\ProgramData\67R6334T5501Y865
2017-02-25 18:24 - 2017-02-25 18:24 - 00000000 ____D C:\Users\PC\AppData\Roaming\win-svc
2017-02-25 18:24 - 2017-02-25 18:24 - 00000000 ____D C:\Program Files (x86)\Youtube AdBlock
2017-02-25 18:23 - 2017-02-25 22:27 - 00000324 _____ C:\Windows\Tasks\Traffic Exchange v209 - 3.job
2017-02-25 18:23 - 2017-02-25 22:27 - 00000324 _____ C:\Windows\Tasks\Traffic Exchange v209 - 2.job
2017-02-25 18:23 - 2017-02-25 22:27 - 00000324 _____ C:\Windows\Tasks\Traffic Exchange v209 - 1.job
2017-02-25 18:23 - 2017-02-25 22:27 - 00000314 _____ C:\Windows\Tasks\Traffic Exchange v2 - 3.job
2017-02-25 18:23 - 2017-02-25 22:27 - 00000314 _____ C:\Windows\Tasks\Traffic Exchange v2 - 1.job
2017-02-25 18:23 - 2017-02-25 21:26 - 00000366 ____H C:\Windows\Tasks\Traffic Exchange Updater.job
2017-02-25 18:23 - 2017-02-25 18:23 - 00003580 _____ C:\Windows\System32\Tasks\Traffic Exchange Guardian
2017-02-25 18:23 - 2017-02-25 18:23 - 00003580 _____ C:\Windows\System32\Tasks\Traffic Exchange Guard
2017-02-25 18:23 - 2017-02-25 18:23 - 00003580 _____ C:\Windows\System32\Tasks\Traffic Exchange
2017-02-25 18:23 - 2017-02-25 18:23 - 00003196 _____ C:\Windows\System32\Tasks\Traffic Exchange Updater
2017-02-25 18:23 - 2017-02-25 18:23 - 00003150 _____ C:\Windows\System32\Tasks\Traffic Exchange v209 - 3
2017-02-25 18:23 - 2017-02-25 18:23 - 00003150 _____ C:\Windows\System32\Tasks\Traffic Exchange v209 - 2
2017-02-25 18:23 - 2017-02-25 18:23 - 00003150 _____ C:\Windows\System32\Tasks\Traffic Exchange v209 - 1
2017-02-25 18:23 - 2017-02-25 18:23 - 00003140 _____ C:\Windows\System32\Tasks\Traffic Exchange v2 - 3
2017-02-25 18:23 - 2017-02-25 18:23 - 00003140 _____ C:\Windows\System32\Tasks\Traffic Exchange v2 - 2
2017-02-25 18:23 - 2017-02-25 18:23 - 00003140 _____ C:\Windows\System32\Tasks\Traffic Exchange v2 - 1
2017-02-25 18:23 - 2017-02-25 18:23 - 00000314 _____ C:\Windows\Tasks\Traffic Exchange v2 - 2.job
2017-02-25 18:23 - 2017-02-25 18:23 - 00000000 __SHD C:\Windows\SysWOW64\%APPDATA%
2017-02-25 18:23 - 2017-02-25 18:23 - 00000000 ____D C:\Users\Default\AppData\Local\AdvinstAnalytics
2017-02-25 18:23 - 2017-02-25 18:23 - 00000000 ____D C:\Users\Default User\AppData\Local\AdvinstAnalytics
2017-02-25 18:23 - 2017-02-25 18:23 - 00000000 ____D C:\Program Files (x86)\Microleaves
2017-02-25 18:22 - 2017-02-25 18:23 - 00000000 ____D C:\Users\PC\AppData\Roaming\Microleaves
2017-02-23 12:10 - 2017-02-25 19:49 - 00000000 ____D C:\Users\PC\Desktop\2
2017-02-23 12:05 - 2017-02-23 12:05 - 00000000 ____D C:\Users\PC\Documents\Lightshot
2017-02-23 11:41 - 2017-02-25 20:45 - 00000382 _____ C:\Windows\Tasks\update-sys.job
2017-02-23 11:41 - 2017-02-25 19:49 - 00000382 _____ C:\Windows\Tasks\update-S-1-5-21-2917841586-4204570114-2067478582-1000.job
2017-02-23 11:41 - 2017-02-23 11:41 - 00003278 _____ C:\Windows\System32\Tasks\update-sys
2017-02-23 11:41 - 2017-02-23 11:41 - 00003250 _____ C:\Windows\System32\Tasks\update-S-1-5-21-2917841586-4204570114-2067478582-1000
2017-02-23 11:41 - 2017-02-23 11:41 - 00000424 _____ C:\Users\PC\AppData\Local\UserProducts.xml
2017-02-23 11:41 - 2017-02-23 11:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
2017-02-23 11:41 - 2017-02-23 11:41 - 00000000 ____D C:\Program Files (x86)\Skillbrains
2017-02-21 23:57 - 2017-02-21 23:57 - 00001171 _____ C:\Users\PC\Desktop\Adobe Photoshop 7.0.lnk
2017-02-21 23:54 - 2017-02-21 23:54 - 00001176 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ImageReady 7.0.lnk
2017-02-21 23:54 - 2017-02-21 23:54 - 00001171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 7.0.lnk
2017-02-21 23:49 - 1998-10-29 16:45 - 00306688 _____ (InstallShield Software Corporation) C:\Windows\IsUninst.exe
2017-02-21 08:19 - 2017-02-21 08:19 - 00001426 _____ C:\Users\Public\Desktop\Play Minecraft!.lnk
2017-02-21 08:18 - 2017-02-21 08:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
2017-02-21 08:18 - 2017-02-21 08:18 - 00000000 ____D C:\Users\PC\AppData\Roaming\Mojang (installer by OfficialHawk)
2017-02-16 21:03 - 2017-02-16 21:03 - 00000000 ____D C:\Users\PC\AppData\Roaming\Macromedia
2017-02-16 21:03 - 2017-02-16 21:03 - 00000000 ____D C:\Users\PC\AppData\Local\Macromedia
2017-02-16 16:40 - 2017-02-16 16:39 - 00000030 _____ C:\AVScanner.ini
2017-02-16 16:39 - 2017-02-25 22:16 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-02-16 16:39 - 2017-02-16 16:39 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-02-16 16:39 - 2017-02-16 16:39 - 00000000 ____D C:\ProgramData\McAfee
2017-02-16 16:39 - 2017-02-16 16:39 - 00000000 ____D C:\Program Files\TrueKey
2017-02-16 16:38 - 2017-02-16 16:38 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-02-16 16:38 - 2017-02-16 16:38 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-02-16 16:38 - 2017-02-16 16:38 - 00000000 ____D C:\Windows\system32\Macromed
2017-02-16 02:29 - 2017-02-16 02:29 - 00000000 ____D C:\Users\PC\Documents\OneNote Notebooks
2017-02-13 18:14 - 2016-10-17 16:35 - 00223464 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmwfp.sys
2017-02-11 12:21 - 2017-02-11 12:21 - 00001160 _____ C:\Users\PC\Desktop\Facebook Gameroom.lnk
2017-02-11 12:18 - 2017-02-11 12:19 - 00252136 _____ (Facebook) C:\Users\PC\Downloads\FacebookGameroom.exe
2017-02-07 14:21 - 2017-02-07 14:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2017-02-07 14:21 - 2017-02-07 14:21 - 00000000 ____D C:\ProgramData\ESET
2017-02-07 14:21 - 2017-02-07 14:21 - 00000000 ____D C:\Program Files\ESET
2017-02-04 22:16 - 2017-02-25 21:17 - 00000000 ____D C:\Users\PC\AppData\LocalLow\uTorrent
2017-01-30 13:45 - 2017-02-23 22:26 - 00000000 ____D C:\Users\PC\Desktop\Tel
2017-01-29 23:24 - 2017-01-29 23:24 - 00000000 ____D C:\Users\PC\Documents\Rockstar Games
2017-01-29 23:24 - 2017-01-29 23:24 - 00000000 ____D C:\Users\PC\AppData\Local\Rockstar Games
2017-01-29 23:24 - 2017-01-29 23:24 - 00000000 ____D C:\ProgramData\Socialclub
2017-01-29 23:23 - 2017-01-29 23:24 - 00000000 ____D C:\ProgramData\Package Cache
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-02-25 22:26 - 2017-01-05 14:34 - 00000000 ____D C:\FRST
2017-02-25 22:25 - 2016-10-10 17:03 - 00000000 ____D C:\Users\PC\AppData\Roaming\uTorrent
2017-02-25 22:24 - 2016-10-09 12:55 - 00000000 ____D C:\Users\PC\AppData\Roaming\IDM
2017-02-25 22:23 - 2016-11-15 23:02 - 00000000 ____D C:\Users\PC\AppData\LocalLow\Mozilla
2017-02-25 22:10 - 2016-10-09 12:55 - 00000000 ____D C:\Users\PC\AppData\Roaming\DMCache
2017-02-25 22:10 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2017-02-25 21:23 - 2016-08-09 12:12 - 00000000 ____D C:\ProgramData\AVAST Software
2017-02-25 21:17 - 2009-07-14 06:13 - 00742940 _____ C:\Windows\system32\PerfStringBackup.INI
2017-02-25 21:15 - 2009-07-14 05:45 - 00014192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-02-25 21:15 - 2009-07-14 05:45 - 00014192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-02-25 21:10 - 2016-09-08 12:58 - 00000000 ____D C:\ProgramData\MFAData
2017-02-25 21:10 - 2016-09-08 12:56 - 00000000 ____D C:\ProgramData\Avg
2017-02-25 21:10 - 2016-07-13 17:22 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2017-02-25 21:10 - 2016-07-09 12:48 - 00000000 ____D C:\ProgramData\NVIDIA
2017-02-25 21:10 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-02-25 21:09 - 2016-07-09 12:49 - 00061256 _____ C:\Windows\system32\BMXStateBkp-{00000005-00000000-00000001-00001102-00000005-00211102}.rfx
2017-02-25 21:09 - 2016-07-09 12:49 - 00061256 _____ C:\Windows\system32\BMXState-{00000005-00000000-00000001-00001102-00000005-00211102}.rfx
2017-02-25 21:09 - 2016-07-09 12:49 - 00000788 _____ C:\Windows\system32\DVCState-{00000005-00000000-00000001-00001102-00000005-00211102}.rfx
2017-02-25 21:02 - 2016-07-09 11:07 - 00000000 ____D C:\Users\PC\AppData\Roaming\Mozilla
2017-02-25 21:02 - 2016-07-09 11:07 - 00000000 ____D C:\Users\PC\AppData\Local\Mozilla
2017-02-25 20:59 - 2016-09-08 12:56 - 00000000 ____D C:\Users\PC\AppData\Local\AvgSetupLog
2017-02-25 20:59 - 2016-07-09 12:17 - 00000000 ____D C:\Users\PC\AppData\Local\ESET
2017-02-25 20:23 - 2016-10-09 11:15 - 00000000 ____D C:\Users\PC\Desktop\New folder1
2017-02-25 20:18 - 2016-10-09 13:58 - 00000000 ____D C:\Users\PC\Downloads\1 PDF
2017-02-25 20:11 - 2016-10-09 15:33 - 00000167 _____ C:\Windows\SysWOW64\_WKERNEL.SYL
2017-02-25 18:24 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\GroupPolicy
2017-02-25 14:54 - 2016-10-09 12:55 - 00000000 ____D C:\Users\PC\Downloads\Video
2017-02-25 11:29 - 2016-11-19 03:56 - 00000000 ____D C:\Program Files (x86)\Counter-Strike Global Offensive
2017-02-24 18:39 - 2017-01-06 21:39 - 00000000 ____D C:\KMPlayer
2017-02-24 00:51 - 2016-07-09 11:02 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-02-24 00:21 - 2016-10-09 12:44 - 00000000 ____D C:\Users\PC\AppData\Roaming\DAEMON Tools Lite
2017-02-23 14:55 - 2016-10-09 12:55 - 00000000 ____D C:\Users\PC\Downloads\Compressed
2017-02-22 20:44 - 2016-10-17 16:42 - 00000000 ____D C:\Windows\Minidump
2017-02-22 13:34 - 2016-07-09 18:41 - 00000000 ____D C:\Users\PC\AppData\Roaming\.minecraft
2017-02-21 23:55 - 2016-07-09 11:10 - 00000000 ____D C:\Users\PC\AppData\Roaming\Adobe
2017-02-21 23:53 - 2016-07-09 11:02 - 00000000 ____D C:\Program Files (x86)\Adobe
2017-02-16 16:39 - 2016-07-09 11:10 - 00000000 ____D C:\Users\PC\AppData\Local\Adobe
2017-02-16 16:38 - 2016-07-09 11:06 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-02-16 02:29 - 2017-01-12 15:33 - 00000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Facebook
2017-02-10 15:00 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2017-02-07 03:41 - 2016-07-13 17:23 - 00002195 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-02-07 03:41 - 2016-07-13 17:23 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-01-29 23:24 - 2016-10-08 12:18 - 00000000 ____D C:\ProgramData\Steam
2017-01-29 23:22 - 2016-07-18 15:46 - 00000000 ____D C:\Windows\SysWOW64\directx
2017-01-27 01:44 - 2016-07-13 17:53 - 00000000 ____D C:\Users\PC\TapinRadio
2017-01-26 22:37 - 2017-01-12 23:11 - 00000000 ____D C:\Users\Public\Facebook Games
==================== Files in the root of some directories =======
2017-02-23 11:41 - 2017-02-23 11:41 - 0000003 _____ () C:\Users\PC\AppData\Local\updater.log
2017-02-23 11:41 - 2017-02-23 11:41 - 0000424 _____ () C:\Users\PC\AppData\Local\UserProducts.xml
Files to move or delete:
====================
C:\Users\PC\AppData\Local\Temp\{b78-2d-04-91498-84afd-c52a-5d3d2}\eN2HAOrIdI.exe
Some files in TEMP:
====================
2017-02-25 20:46 - 2017-02-25 20:46 - 0425560 _____ (ESET) C:\Users\PC\AppData\Local\Temp\InstHelper.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-02-22 08:52
==================== End of FRST.txt ============================
|
|
|
|
Poslao: 25 Feb 2017 22:49
|
offline
- helen1
- Anti Malware Fighter
Rank 2
- Pridružio: 27 Avg 2005
- Poruke: 8620
- Gde živiš: Novi Beograd
|
Zdravo,
Deinstaliraj sledece programe preko Control Panela:
Traffic Exchange
Youtube AdBlock
-------------------
Preuzmi AdwCleaner i sačuvaj ga na Desktop
Dvoklikom pokreni program.
U EULA prozoru klikni na I agree.
U Options isključi Reset Winsock settings ako je uključen.
Klikni na dugme Scan i sačekaj da se završi skeniranje.
Klikni na dugme Cleaning i pričekaj da program završi.
Program će zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni OK kao potvrdu.
Na sljedeća dva prozora koja se otvore (Informations i Restart required ) klikni OK
Računar će se restartovati, a potom otvoriti Notepad (C:\Adwcleaner\AdwCleaner[C1].txt) sa izvještajem.
Sačuvaj taj izvještaj na Desktop i okači ga uz poruku koristeći opciju "Prikači fajl"
|
|
|
|
Poslao: 25 Feb 2017 23:12
|
offline
- maha
- Super građanin
- Pridružio: 06 Dec 2006
- Poruke: 1152
|
Napisano: 25 Feb 2017 23:11
traffic ga nema a kad pokrenem adwcleaner evo sta se desi
Dopuna: 25 Feb 2017 23:12
desetine prozora firefoxa
|
|
|
|
|
Poslao: 25 Feb 2017 23:15
|
offline
- maha
- Super građanin
- Pridružio: 06 Dec 2006
- Poruke: 1152
|
da ..na desetine prozora..ne mogu da ih pogasim..pa restartujem
|
|
|
|
Poslao: 25 Feb 2017 23:20
|
offline
- helen1
- Anti Malware Fighter
Rank 2
- Pridružio: 27 Avg 2005
- Poruke: 8620
- Gde živiš: Novi Beograd
|
Preuzmi Malwarebytes Anti-Malware sa ovog ili ovog ili ovog linka i instaliraj aplikaciju.
Pokreni mb3-setup-consumer-{verzija}.exe i isprati uputstva za instalaciju programa. Nakon instalacije, klikni na Finish
Prilikom prvog pokretanja, program će prikazati prozor "dobrodošlice". Slobodno zatvori taj prozor.
Napomena: Premium funkcije programa su već aktivirane i važe 13 dana od trenutka instalacije. Premium funkcije možeš isključiti preko Settings > My Account tab podešavanja.
• Podešavanja skenera - u Settings, klikni na Protection tab. Ispod Scan Options sekcije, uključi "Scan for rootkits" opciju.
• Pripremi podešavanja za Threat Scan - u Dashboard , klikni na Scan Now dugme. MBAM će ažurirati bazu i započeti skeniranje.
Kada se skeniranje završi, ako je infekcija detektovana, obrati pažnju da je sve označeno, pa klikni na Remove Selected. Restartuj računar ako program upita za restart.
• Dostavi log: Pod Reports izaberi trenutni datum izveštaja Scan Report i potom klikni na View Report.
Izvezi log na Desktop;
- Klikni na Export dugme na dnu, pa onda izaberi 'Text file (*.txt)'
# U Save File dijalogu koji se pojavi, klikni na Desktop. U File name: polje, upiši "mbam" (bez navodnika) i klikni na Save.
- Pojaviće se poruka "Your file has been successfully exported", klikni Ok i zatvori prozor.
• U odgovoru prikači mbam.txt log koristeći "Prikači fajl" opciju .
|
|
|
|
|
Poslao: 25 Feb 2017 23:45
|
offline
- helen1
- Anti Malware Fighter
Rank 2
- Pridružio: 27 Avg 2005
- Poruke: 8620
- Gde živiš: Novi Beograd
|
Da li si izabrao da ukloni pronadjene detekcije?
|
|
|
|
|
Poslao: 25 Feb 2017 23:58
|
offline
- helen1
- Anti Malware Fighter
Rank 2
- Pridružio: 27 Avg 2005
- Poruke: 8620
- Gde živiš: Novi Beograd
|
Kad je skeniranje bilo zavrseno, trebalo je da kliknes na Remove selected.
|
|
|
|