Usporeno podizanje sistema..

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Napisano: 22 Avg 2017 8:55

Dvoumim se između reinstalacije i čišćenja..sporo podiže sistem,sporo otvara pojedine programe,sporo se gasi..da probamo pa možda se i ubrza.

Dopuna: 22 Avg 2017 8:59

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-08-2017
Ran by Hranca (administrator) on HRANCA-PC (22-08-2017 08:51:25)
Running from C:\Users\Hranca\Desktop
Loaded Profiles: Hranca (Available Profiles: Hranca)
Platform: Windows 7 Ultimate (X64) Language: English (United States)
Internet Explorer Version 8 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Autodata Limited) C:\Program Files (x86)\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe
(ClanServers Hosting LLC) C:\Program Files (x86)\GameTracker\GSInGameService.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
() C:\Program Files (x86)\ZTE Join Air\AssistantServices.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files (x86)\OscarX7Editor5Mode\OscarX7Editor5Mode\OscarEditor.exe
(Gaijin Entertainment) C:\Users\Hranca\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [7833120 2009-05-23] (Realtek Semiconductor)
HKU\S-1-5-21-1293919426-2142621105-2511924792-1001\...\Run: [OscarX7Mouse5Mode] => C:\Program Files (x86)\OscarX7Editor5Mode\OscarX7Editor5Mode\OscarEditor.exe [3521024 2012-03-20] ()
HKU\S-1-5-21-1293919426-2142621105-2511924792-1001\...\Run: [Gaijin.Net Agent] => C:\Users\Hranca\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2010056 2017-07-23] (Gaijin Entertainment)
HKU\S-1-5-21-1293919426-2142621105-2511924792-1001\...\MountPoints2: F - F:\setup\rsrc\Autorun.exe
HKU\S-1-5-21-1293919426-2142621105-2511924792-1001\...\MountPoints2: {240445d8-feed-11e5-b5b6-0022158832e8} - F:\autorun.exe
HKU\S-1-5-21-1293919426-2142621105-2511924792-1001\...\MountPoints2: {e6b43159-3f90-11e6-a873-0022158832e8} - F:\autorun.exe
HKU\S-1-5-21-1293919426-2142621105-2511924792-1001\...\MountPoints2: {ed9acd36-daf3-11e6-a0e0-0022158832e8} - G:\setup\rsrc\Autorun.exe
GroupPolicy: Restriction <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 178.79.6.3 178.79.20.3 192.168.1.1
Tcpip\..\Interfaces\{D0A0AF1D-E6E6-40D8-8B24-6AFCB0526CF8}: [DhcpNameServer] 178.79.6.3 178.79.20.3 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-1293919426-2142621105-2511924792-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1293919426-2142621105-2511924792-1001 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL =
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2015-02-21] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2015-02-21] (Oracle Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-14] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-14] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-14] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-14] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\Hranca\AppData\Roaming\Songbird2\Profiles\h4c89x03.default [2016-11-26]
FF NetworkProxy: Songbird2\Profiles\h4c89x03.default -> no_proxies_on", "127.0.0.1;localhost"
FF Extension: (No Name) - C:\Program Files (x86)\Songbird\extensions\albumart@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files (x86)\Songbird\extensions\gonzo@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files (x86)\Songbird\extensions\philips-addon-manager@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files (x86)\Songbird\extensions\pinkmartini@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files (x86)\Songbird\extensions\purplerain@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files (x86)\Songbird\extensions\sharing@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files (x86)\Songbird\extensions\soundboard@songbirdnest.com [not found]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_26_0_0_151.dll [2017-08-08] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_151.dll [2017-08-08] ()
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 -> C:\Windows\SysWOW64\npDeployJava1.dll [2015-02-21] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2015-02-21] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-08-01] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Profile 9
CHR HomePage: Profile 9 -> hxxp://www.google.rs/
CHR StartupUrls: Profile 9 -> "hxxps://www.google.rs/"
CHR NewTab: Profile 9 -> Not-active:"chrome-extension://ldbdbikclkjophoffjghkaamlmmgaane/index.html"
CHR Profile: C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 6 [2016-08-05]
CHR Extension: (Google документи) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-21]
CHR Extension: (Adblock Plus) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-03-11]
CHR Extension: (AdBlock) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-03-31]
CHR Extension: (Google новчаник) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-03]
CHR Profile: C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 7 [2016-03-17]
CHR Extension: (Google презентације) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-03]
CHR Extension: (Google документи) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-03]
CHR Extension: (Google диск) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-04-03]
CHR Extension: (YouTube) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-04-03]
CHR Extension: (Google Search) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-03]
CHR Extension: (Google табеле) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-03]
CHR Extension: (Google новчаник) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-04-03]
CHR Extension: (Gmail) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-03]
CHR Profile: C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 8 [2016-08-05]
CHR Extension: (Google документи) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-03]
CHR Extension: (Google диск) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-23]
CHR Extension: (YouTube) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Adblock Plus) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-03-09]
CHR Extension: (Google Search) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Unfriend Notify for Facebook) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\fpmgjphoccjhianiglkbcajadaaaonge [2016-03-14]
CHR Extension: (Google документи офлајн) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (AdBlock) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-03-11]
CHR Extension: (Плаћања у Chrome веб-продавници) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-25]
CHR Extension: (Gmail) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-03]
CHR Profile: C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 9 [2017-08-22]
CHR Extension: (Google документи) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\aohghmighlieiainnegkcijnfilokake [2016-03-16]
CHR Extension: (Google диск) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-16]
CHR Extension: (YouTube) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-16]
CHR Extension: (Adblock Plus) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-07-12]
CHR Extension: (Google документи офлајн) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (AdBlock) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-08-11]
CHR Extension: (Namolagubi) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\hohoedddigooeoajechgemkbalnmecjm [2017-06-20]
CHR Extension: (StartJoy) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\ldbdbikclkjophoffjghkaamlmmgaane [2016-10-09]
CHR Extension: (Плаћања у Chrome веб-продавници) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Gmail) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-16]
CHR Extension: (Chrome Media Router) - C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-08]
CHR Profile: C:\Users\Hranca\AppData\Local\Google\Chrome\User Data\System Profile [2016-03-21]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Autodata Limited License Service; C:\Program Files (x86)\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe [72704 2016-06-09] (Autodata Limited) [File not signed]
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2016-12-22] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [395024 2017-01-23] (EasyAntiCheat Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2836296 2016-12-14] (ESET)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [97432 2007-04-13] () [File not signed]
S2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2014-12-17] () [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-12-17] ()
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (DEVGURU Co., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10351856 2016-12-15] (TeamViewer GmbH)
R2 UI Assistant Service; C:\Program Files (x86)\ZTE Join Air\AssistantServices.exe [241664 2009-03-24] () [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 androidusb; C:\Windows\System32\Drivers\androidusb.sys [31744 2011-05-09] (Google Inc) [File not signed]
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2009-08-04] ()
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131712 2017-01-16] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2017-01-15] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2017-01-15] (Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [132272 2017-01-17] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [106768 2017-01-17] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [180544 2017-01-17] (ESET)
R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [49672 2017-01-17] (ESET)
R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [77616 2017-01-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [60536 2017-01-17] (ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [96856 2017-01-17] (ESET)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S3 qcusbser; C:\Windows\System32\DRIVERS\qcusbser.sys [118016 2010-06-17] (TCT International Mobile Ltd)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [165504 2017-01-16] (Samsung Electronics Co., Ltd.)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl [146928 2010-08-26] (CyberLink Corp.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-08-22 08:51 - 2017-08-22 08:51 - 000019202 _____ C:\Users\Hranca\Desktop\FRST.txt
2017-08-22 08:49 - 2017-08-22 08:49 - 002395648 _____ (Farbar) C:\Users\Hranca\Desktop\FRST64.exe
2017-08-20 08:53 - 2017-08-20 09:06 - 000000000 ____D C:\Users\Hranca\Desktop\New folder (3)
2017-08-05 12:10 - 2017-08-05 12:10 - 000001011 _____ C:\Users\Hranca\AppData\Local\recently-used.xbel
2017-08-05 11:58 - 2017-08-05 12:10 - 000000000 ____D C:\Users\Hranca\AppData\Local\gtk-2.0
2017-08-05 11:58 - 2017-08-05 11:58 - 000000000 ____D C:\Users\Hranca\.thumbnails
2017-08-05 11:50 - 2017-08-07 13:43 - 000000000 ____D C:\Users\Hranca\.gimp-2.8
2017-08-05 11:50 - 2017-08-05 11:50 - 000000000 ____D C:\Users\Hranca\AppData\Local\gegl-0.2
2017-08-05 11:50 - 2017-08-05 11:50 - 000000000 ____D C:\Users\Hranca\AppData\Local\fontconfig
2017-08-05 11:46 - 2017-08-05 11:46 - 000000894 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
2017-08-05 11:45 - 2017-08-05 11:46 - 000000000 ____D C:\Program Files\GIMP 2
2017-08-05 11:43 - 2017-08-05 11:44 - 090396104 _____ (The GIMP Team ) C:\Users\Hranca\Downloads\gimp-2.8.10-setup.exe
2017-08-05 07:41 - 2017-08-05 11:19 - 000000000 ____D C:\Users\Hranca\AppData\Roaming\PhotoScape
2017-08-05 07:28 - 2017-08-05 07:35 - 000000030 _____ C:\Windows\Iedit_.INI
2017-08-02 21:46 - 2017-08-03 16:29 - 000000000 ____D C:\Users\Hranca\Desktop\New folder (2)

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-08-22 08:51 - 2016-03-16 20:48 - 000000000 ____D C:\FRST
2017-08-22 08:32 - 2009-07-14 06:45 - 000014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-08-22 08:32 - 2009-07-14 06:45 - 000014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-08-22 08:27 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-08-21 14:19 - 2015-08-29 14:11 - 000000000 ____D C:\Users\Hranca\AppData\Roaming\GameTracker
2017-08-20 18:12 - 2014-12-17 20:04 - 000281768 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2017-08-20 18:12 - 2014-12-17 19:09 - 000281768 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2017-08-18 21:38 - 2014-12-17 19:09 - 000281768 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2017-08-17 22:46 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2017-08-15 00:47 - 2016-03-16 19:58 - 000002201 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-08-12 18:36 - 2015-11-11 09:52 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-08-11 08:37 - 2016-08-16 22:08 - 000192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-08-09 17:04 - 2015-09-30 15:21 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-08-08 21:57 - 2015-04-14 20:49 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-08-08 21:57 - 2015-04-14 20:49 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-08-08 21:57 - 2015-04-14 20:49 - 000004312 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-08-08 21:57 - 2015-04-14 20:48 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-08-08 21:57 - 2015-04-14 20:48 - 000000000 ____D C:\Windows\system32\Macromed
2017-08-05 14:47 - 2009-07-14 07:08 - 000032554 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-08-05 12:32 - 2014-12-18 11:01 - 000000000 ____D C:\ProgramData\Ulead Systems
2017-08-05 12:32 - 2014-12-17 12:46 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-08-05 11:58 - 2014-12-17 09:15 - 000000000 ____D C:\Users\Hranca
2017-08-05 07:41 - 2014-12-17 12:04 - 000127552 _____ C:\Users\Hranca\AppData\Local\GDIPFONTCACHEV1.DAT
2017-08-05 07:13 - 2009-07-14 06:45 - 000465208 _____ C:\Windows\system32\FNTCACHE.DAT
2017-08-05 07:05 - 2009-07-14 07:32 - 000000000 ____D C:\Windows\Downloaded Program Files
2017-08-05 07:01 - 2009-07-14 07:32 - 000000000 ____D C:\Windows\system32\FxsTmp
2017-08-04 22:50 - 2015-03-29 13:42 - 000000000 ____D C:\Users\Hranca\AppData\Roaming\vlc

==================== Files in the root of some directories =======

2016-04-09 23:31 - 2016-04-09 23:31 - 000005120 _____ () C:\Users\Hranca\AppData\Roaming\GiftBag.db
2016-09-30 16:58 - 2016-09-30 17:06 - 000001057 _____ () C:\Users\Hranca\AppData\Roaming\vso_ts_preview.xml
2016-08-04 16:48 - 2016-08-04 16:49 - 000341504 _____ () C:\Users\Hranca\AppData\Roaming\wsrv_52262f23.dat
2017-08-05 12:10 - 2017-08-05 12:10 - 000001011 _____ () C:\Users\Hranca\AppData\Local\recently-used.xbel
2016-04-16 21:31 - 2016-04-16 21:31 - 000000017 _____ () C:\Users\Hranca\AppData\Local\resmon.resmoncfg
2017-01-08 15:54 - 2016-11-23 15:37 - 000000570 _____ () C:\Users\Hranca\AppData\Local\TroubleshooterConfig.json

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-08-11 16:35

==================== End of FRST.txt ============================

Dopuna: 22 Avg 2017 8:59

https://www.mycity.rs/must-login.png

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Deinstaliraj YTD Video Downloader 5.7.1. U logovima nema tragova malwarea i to nije urazlog usporenosti sistema. S obzirom da ni Service pack 1 za 7 nije instaliran, najjednostavnije ti je reinstalirati Windows.


• Sledeća procedura će implementirati završno čišćenje.

Preuzmi "Xplode"-ov DelFix alat i snimi ga na Desktop.
Dvoklikom pokreni alat i štikliraj kućice ispred sledećih opcija;

Remove disinfection tools
Create registry backup
Purge System Restore

Klikni na dugme Run i pričekaj trenutak dok alat ne završi svoj rad.
Od ovog trenutka, svi korišćeni alati u ovoj temi bi trebali biti obrisani.
Alat će takođe formirati izveštaj za tebe. (C:\DelFix.txt)

Alat će snimiti i zdravo stanje registy-ja i napraviti backup koristeci integrisan program "ERUNT" u %windir%\ERUNT\DelFix
Alat briše stare system restore tačke i pravi novu, svežu tačku nakon čišćenja.