WIndows je počeo da baguje

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Napisano: 29 Nov 2018 11:05

Imam instaliran Win 7 skoro 3 godine i počeo je da baguje ,koči i usporava.Da li može da se nekako izleči a da ne moram ponovo da instaliram novi Windows?

Igor

Dopuna: 29 Nov 2018 11:27

Uradio sam skeniranje sa farbar programom.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27.11.2018
Ran by IGOR (administrator) on IGOR-PC (29-11-2018 11:11:12)
Running from C:\Users\IGOR\Desktop
Loaded Profiles: IGOR (Available Profiles: IGOR)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 8 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
(QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe
(Vivaldi Technologies AS) C:\Users\IGOR\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS) C:\Users\IGOR\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS) C:\Users\IGOR\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS) C:\Users\IGOR\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS) C:\Users\IGOR\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS) C:\Users\IGOR\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS) C:\Users\IGOR\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS) C:\Users\IGOR\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS) C:\Users\IGOR\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS) C:\Users\IGOR\AppData\Local\Vivaldi\Application\vivaldi.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [QHSafeTray] => C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe [1814592 2018-09-17] (Qihoo 360 Technology Co. Ltd.)
HKU\S-1-5-21-1464441380-2032873324-1387589644-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
GroupPolicy: Restriction ? <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{6C8E1A77-A2F8-47D1-9D7F-1D2AE3A2E49F}: [DhcpNameServer] 192.168.1.1 0.0.0.0

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.rs/?gws_rd=ssl
HKU\S-1-5-21-1464441380-2032873324-1387589644-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/en-xl/?ocid=iehp
HKU\S-1-5-21-1464441380-2032873324-1387589644-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.rs/
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2013-11-15] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2013-09-13] (Microsoft Corporation)
BHO: SafeMon Class -> {B69F34DD-F0F9-42DC-9EDD-957187DA688D} -> C:\Program Files (x86)\360\Total Security\safemon\safemon64.dll [2018-09-17] (Qihu 360 Software Co., Ltd.)
BHO-x32: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10] (Sun Microsystems, Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2013-09-13] (Microsoft Corporation)
BHO-x32: SafeMon Class -> {B69F34DD-F0F9-42DC-9EDD-957187DA688D} -> C:\Program Files (x86)\360\Total Security\safemon\safemon.dll [2018-09-17] (Qihu 360 Software Co., Ltd.)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2013-11-02] (Microsoft Corporation)
DPF: HKLM-x32 {8D9563A9-8D5F-459B-87F2-BA842255CB9A} hxxps://rapps.telekom.rs/InternalSite/WhlCompMgr.cab
DPF: HKLM-x32 {9EF2BA47-C6A7-470D-9DD9-4323B0CB8353} hxxp://82.117.222.152:8080/WebClient.exe
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @EDVR/WebClient -> C:\windows\system32\WebClient\npwebclient.dll [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2013-11-15] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-09-20] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-09-20] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-10-06] (Adobe Systems Inc.)

Chrome:
=======
CHR StartupUrls: Default -> "hxxps://www.google.rs/"
CHR Profile: C:\Users\IGOR\AppData\Local\Google\Chrome\User Data\Default [2018-11-29]
CHR Extension: (Презентације) - C:\Users\IGOR\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-02-04]
CHR Extension: (Документи) - C:\Users\IGOR\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-04]
CHR Extension: (Google диск) - C:\Users\IGOR\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-02-04]
CHR Extension: (YouTube) - C:\Users\IGOR\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-02-04]
CHR Extension: (Табеле) - C:\Users\IGOR\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-02-04]
CHR Extension: (Google документи офлајн) - C:\Users\IGOR\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-20]
CHR Extension: (AdBlock) - C:\Users\IGOR\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-10-24]
CHR Extension: (Плаћања у Chrome веб-продавници) - C:\Users\IGOR\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Gmail) - C:\Users\IGOR\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-02-04]
CHR Extension: (Chrome Media Router) - C:\Users\IGOR\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-10-30]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [glcimepnljoholdmjchkloafkggfoijh] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-05-16] (Nero AG)
R2 QHActiveDefense; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [965184 2018-09-17] (Qihoo 360 Technology Co. Ltd.)
S3 uagqecsvc; C:\Program Files\Microsoft Forefront UAG\Endpoint Components\3.1.0\uagqecsvc.exe [170712 2013-11-15] (Microsoft Corporation)
S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 360AntiHacker; C:\Windows\System32\Drivers\360AntiHacker64.sys [183416 2018-09-17] (360.cn)
R3 360AvFlt; C:\Windows\System32\DRIVERS\360AvFlt.sys [86248 2018-09-17] (360.cn)
R3 360AvFlt; C:\Windows\SysWOW64\DRIVERS\360AvFlt.sys [86248 2018-09-17] (360.cn)
R1 360Box64; C:\Windows\System32\DRIVERS\360Box64.sys [330472 2018-09-17] (360.cn)
R3 360Camera; C:\Windows\System32\Drivers\360Camera64.sys [49088 2018-09-17] (360.cn)
R1 360FsFlt; C:\Windows\System32\DRIVERS\360FsFlt.sys [435296 2018-09-17] (360.cn)
R1 360netmon; C:\Windows\System32\DRIVERS\360netmon.sys [87672 2018-09-17] (360.cn)
R1 BAPIDRV; C:\Windows\System32\DRIVERS\BAPIDRV64.sys [211552 2018-09-17] (360.cn)
S3 FETNDIS; C:\Windows\System32\DRIVERS\fet6x64.sys [47872 2009-06-10] (VIA Technologies, Inc. )
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-10-10] ()
S2 VBoxDRV; \??\C:\Program Files (x86)\LinuxLive USB Creator\tools\VirtualBox\Portable-VirtualBox\app64\drivers\VBoxDrv\VBoxDrv.sys [X]
S2 VBoxUSBMon; \??\C:\Program Files (x86)\LinuxLive USB Creator\tools\VirtualBox\Portable-VirtualBox\app64\drivers\USB\filter\VBoxUSBMon.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-11-29 11:11 - 2018-11-29 11:11 - 000011014 _____ C:\Users\IGOR\Desktop\FRST.txt
2018-11-29 11:10 - 2018-11-29 11:11 - 000000000 ____D C:\FRST
2018-11-29 11:10 - 2018-11-29 11:10 - 002416640 _____ (Farbar) C:\Users\IGOR\Desktop\FRST64.exe
2018-11-29 11:00 - 2018-11-29 11:00 - 000003758 _____ C:\Windows\System32\Tasks\AutoKMS
2018-11-29 10:42 - 2018-11-29 10:42 - 000305152 _____ C:\Users\IGOR\Desktop\windiag.iso
2018-11-29 00:17 - 2018-11-29 00:17 - 000000000 ____D C:\Windows\System32\Tasks\Event Viewer Tasks
2018-11-28 22:38 - 2018-11-28 22:38 - 000106300 _____ C:\Users\IGOR\Downloads\scan27112018.pdf
2018-11-28 22:38 - 2018-11-28 22:38 - 000014026 _____ C:\Users\IGOR\Downloads\iznosi provizije Terenska teh.p.xlsx
2018-11-28 22:38 - 2018-11-28 22:38 - 000014026 _____ C:\Users\IGOR\Downloads\iznosi provizije Terenska teh.p (1).xlsx
2018-11-28 16:50 - 2013-05-03 15:57 - 072607752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MRT.exe
2018-11-28 16:28 - 2018-11-28 16:28 - 000000000 ____D C:\zoek_backup
2018-11-27 16:02 - 2018-11-27 16:03 - 000429776 _____ C:\Windows\system32\FNTCACHE.DAT
2018-11-27 03:24 - 2018-11-27 03:24 - 000111128 _____ C:\Users\IGOR\AppData\Local\GDIPFONTCACHEV1.DAT
2018-11-16 06:56 - 2018-11-16 06:59 - 181016920 _____ C:\Users\IGOR\Desktop\li67gf9f.exe
2018-11-16 00:34 - 2018-11-16 00:34 - 007592144 _____ (Malwarebytes) C:\Users\IGOR\Desktop\AdwCleaner.exe
2018-11-16 00:34 - 2018-11-16 00:34 - 000000000 ____D C:\AdwCleaner
2018-11-14 21:06 - 2018-11-15 07:42 - 000001891 _____ C:\Users\IGOR\AppData\Roaming\downloads.json
2018-11-14 21:05 - 2018-11-14 21:06 - 000000000 ____D C:\Users\IGOR\AppData\Roaming\FlvtoConverter
2018-11-14 21:04 - 2018-11-14 21:04 - 000000000 ____D C:\Users\IGOR\Documents\YouTubeDownloads
2018-11-14 21:04 - 2018-11-14 21:04 - 000000000 ____D C:\Users\IGOR\AppData\Local\FlvtoYoutubeDownloader
2018-11-03 23:54 - 2018-11-03 23:54 - 000000000 ____D C:\Windows\ERUNT

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-11-29 11:10 - 2018-09-20 22:17 - 000000000 ____D C:\Users\IGOR\AppData\LocalLow\360WD
2018-11-29 11:04 - 2009-07-14 05:45 - 000028896 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-11-29 11:04 - 2009-07-14 05:45 - 000028896 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-11-29 11:00 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2018-11-29 10:58 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-11-29 10:28 - 2017-12-05 23:41 - 000001352 _____ C:\Users\Public\Desktop\SmartPSS.lnk
2018-11-29 10:28 - 2017-12-05 23:41 - 000001324 _____ C:\Users\Public\Desktop\PC-NVR.lnk
2018-11-28 22:48 - 2017-12-25 01:16 - 000000000 ____D C:\Users\IGOR\AppData\Roaming\Kodi
2018-11-28 22:41 - 2017-12-05 23:41 - 000000000 ____D C:\Users\Public\SmartPSS
2018-11-28 22:30 - 2017-11-09 21:47 - 000000000 ____D C:\Users\IGOR\AppData\Roaming\Winamp
2018-11-28 22:30 - 2017-11-09 21:25 - 000000000 ____D C:\Users\IGOR\AppData\Roaming\vlc
2018-11-28 20:22 - 2017-11-10 23:40 - 000000000 ____D C:\Users\IGOR\Documents\Outlook Files
2018-11-28 16:19 - 2018-09-20 22:17 - 000000000 ____D C:\ProgramData\360safe
2018-11-28 15:15 - 2017-11-09 19:33 - 000000000 ____D C:\ProgramData\360Quarant
2018-11-27 03:24 - 2017-11-23 21:06 - 000000440 __RSH C:\ProgramData\ntuser.pol
2018-11-27 03:23 - 2009-07-14 06:32 - 000000000 ____D C:\Windows\Downloaded Program Files
2018-11-22 03:09 - 2018-05-21 20:52 - 000000000 ____D C:\Users\IGOR\AppData\Roaming\Macromedia
2018-11-19 22:00 - 2017-12-10 23:45 - 000000000 ____D C:\Users\IGOR\AppData\Roaming\360DrvMgr
2018-11-19 20:43 - 2018-09-20 22:12 - 000002226 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-11-19 20:43 - 2018-09-20 22:12 - 000002185 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-11-18 19:52 - 2017-11-08 22:01 - 000000000 ____D C:\Users\IGOR
2018-11-17 11:45 - 2009-07-14 06:08 - 000032566 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2018-11-14 20:45 - 2017-12-25 01:15 - 000000000 ____D C:\ProgramData\Package Cache
2018-11-09 01:27 - 2018-01-10 23:18 - 000000000 __SHD C:\$360Section
2018-11-09 01:27 - 2017-08-11 11:50 - 000000000 ____D C:\Windows\Panther
2018-11-08 23:37 - 2018-06-06 21:57 - 000000000 ____D C:\Users\IGOR\AppData\Local\ElevatedDiagnostics
2018-11-08 23:37 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\NDF
2018-11-04 21:31 - 2009-07-14 06:13 - 000006346 _____ C:\Windows\system32\PerfStringBackup.INI
2018-11-03 23:22 - 2018-10-23 22:41 - 000000000 ____D C:\Users\IGOR\AppData\Roaming\WebacamSurveyor
2018-11-03 23:07 - 2017-11-10 23:37 - 000000000 ____D C:\Windows\AutoKMS
2018-11-03 22:39 - 2018-10-23 22:41 - 000000187 _____ C:\Users\IGOR\AppData\Roaming\wss.ini
2018-11-03 21:19 - 2017-11-09 22:10 - 000000000 ____D C:\Windows\pss

==================== Files in the root of some directories =======

2018-11-14 21:06 - 2018-11-15 07:42 - 000001891 _____ () C:\Users\IGOR\AppData\Roaming\downloads.json
2018-10-23 22:41 - 2018-11-03 22:39 - 000000187 _____ () C:\Users\IGOR\AppData\Roaming\wss.ini

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-11-27 19:37

==================== End of FRST.txt ============================
mycity.rs/must-login.png

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Malware nije uzrok usporenja tvog računara. Ne znam zašto ti piše za CPU "AMD Processor model unknown", ali moguće je da je uzrok usporenja ili AV program ili neka hardverska komponenta.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Instalirao sam novi Windows i sada je sve u redu.Hteo sam da pokušamo bez instalacije da nađemo problem,ali nema veze.Hvala na pomoći.