IBuddy ne mogu ukloniti

1

IBuddy ne mogu ukloniti

offline
  • Pridružio: 18 Jan 2009
  • Poruke: 203

Skidao sam neki torent i navuko mi se taj IBuddy i ko zna sta jos uz njega. Kako da ga uklonim.


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-02-2021
Ran by Marko (administrator) on MARKO-PC (08-03-2021 00:09:24)
Running from C:\Users\Marko\Desktop
Loaded Profiles: Marko
Platform: Windows 10 Pro Version 2004 19041.804 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cnext.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atiesrxx.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <3>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\Marko\AppData\Roaming\uTorrent\updates\3.4.9_43388\utorrentie.exe <2>
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\Marko\AppData\Roaming\uTorrent\uTorrent.exe
(Digital Communications Inc -> Сorp DCom) C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusClient.exe
(Digital Communications Inc -> Сorp DCom) C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusIC.exe
(Digital Communications Inc -> Сorp DCom) C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusService.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <27>
(Hewlett-Packard Company -> HP) C:\Windows\System32\HPSIsvc.exe
(Hi-Rez Studios) [File not signed] C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(KAY ENTERPRICES LIMITED -> IdleTime Software) [File not signed] C:\Program Files (x86)\IBuddy\IBuddyClient.exe
(KAY ENTERPRICES LIMITED -> ITime Software) [File not signed] [File is in use] C:\Program Files (x86)\IBuddy\IBuddyService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2102.8653.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\cnext.exe [4926664 2016-02-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13196432 2012-09-25] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [117352 2020-12-16] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58584 2017-05-30] (Raptr, Inc -> Raptr, Inc)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-4496312-4232670094-2146604737-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [735336 2019-02-24] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-4496312-4232670094-2146604737-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32414392 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Windows x64\Print Processors\HP1100PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1100PP.DLL [74240 2012-08-31] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\HP1100LM: C:\WINDOWS\system32\HP1100LM.DLL [288768 2012-08-31] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\88.0.4324.190\Installer\chrmstp.exe [2021-02-24] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\$McRebootA5E6DEAA56$.lnk [2021-03-07]
ShortcutTarget: $McRebootA5E6DEAA56$.lnk -> (No File)
Startup: C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk [2015-06-20]
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {037A0A66-E354-4822-9BD6-4ECB3BDC0B0F} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {06A4BC28-E85A-4B4C-9B64-5441EFF04CD9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269504 2016-05-13] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {0F41C723-7A99-4383-810A-7728FDD62172} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {12A78173-1AC1-4DCD-A601-F0D36B607AE6} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {12E7DD76-B7A2-4A08-8DA0-DAFF872CBE03} - System32\Tasks\{26728685-951A-4125-B880-FD887E714FC8} => C:\Program Files (x86)\Arab-GB\SniperGhostWarrior2\Bin32\SniperGhostWarrior2.exe
Task: {136C51BC-E9A9-4D0F-AD9E-51CABD802063} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {156250F9-698A-419A-B4D0-5379EDE1E004} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {20595249-6038-40A7-9648-81B0818A2682} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2682CA35-D176-47D5-95C1-C74D6872EE76} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {27B77C04-2350-4CAE-8D0E-332821872F25} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {287F719B-B262-4650-BD94-BD2C20201B6E} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2AE6E0C9-449E-458C-AB7F-ACA55B0CB758} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {2D9E4573-8BF1-483B-8258-F76595C74299} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2FB0BC02-BBC5-47B0-A1C8-90AFCEF8052C} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {3A6DB8BC-7338-4F66-9D09-C2912CCACF5C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26896568 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {4685259F-0229-423E-A773-14343630E144} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {489C6197-F61F-4774-9BB7-14170219E88C} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {4BDB5680-26F3-4DB3-A9F2-225EBF6287AD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {564E8398-2F22-491C-A2DF-EFCE985E6BB3} - System32\Tasks\SmartShare => C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe [495136 2014-12-05] (LG Electronics Inc. -> LG Electronics Inc.)
Task: {58315380-A2AF-498F-8631-5733659A23D8} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {5E33504D-DFA7-499F-8972-C116DCDDB377} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {61F35F1D-19B6-44F6-B7E2-36AA79E9E77E} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6405AF98-4DBA-47D7-A96B-53E3195ED857} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {64AB1732-C2A3-429F-9ECE-9C2EBF1F8310} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {66E2572C-AB26-4864-B01B-1D2374400A62} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {69C29C2B-64C3-4FAC-A4F1-05F5DAD32D84} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7F93CFFC-9535-4689-AEE0-5D6406C9C2AC} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4682976 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
Task: {86EB65D1-D1BE-4095-BBC3-96A1E8D008B7} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {8BE1527D-3124-4AD2-A2C5-77D3E78FD6DE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-02-11] (Google LLC -> Google LLC)
Task: {8D676019-CA5F-4D65-96AB-4A8CED22C7F9} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {8D8CFB4F-ACAB-438F-9A78-4301E6639E01} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {902822C0-977E-4361-AFB7-AD14B3A659A1} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {90E5BB0D-F6CA-4725-BA9D-553BFB7399E9} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {928ACCB6-7351-4C64-8E41-43AD9E56AD64} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {93BC9201-FDE8-42F1-B3B2-38BDB5854269} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {95435C83-F9D8-4CF4-B930-BFB0B71B6C53} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1791712 2021-02-23] (Avast Software s.r.o. -> Avast Software)
Task: {9AEDF1F6-5849-49C0-A11C-401F9C28B94D} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {A2F1D34A-6B38-44FC-89BE-7906E589D137} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {A4F7B8F5-5A34-4EF9-91E1-61F7457D2FB1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A881BDDA-BF39-41F1-9309-E6E3761FD136} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {AB5C80CA-8BA4-4387-A5B1-3E7EA11CB2CA} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B05CBEBC-BD2F-4D9E-A4C6-3349C25A6E2F} - System32\Tasks\{B67810E7-DD41-409F-8326-5720C56B0980} => C:\Windows\system32\pcalua.exe -a E:\DDPlayCam\DDPlayCam.exe -d E:\DDPlayCam
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B6763036-5941-48A1-9650-69C9236E9E1C} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {B6F34B4B-4BEF-4803-8897-D972260C6F2C} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {B7DB3670-115E-4013-B2AF-CF048895A694} - System32\Tasks\{A39CA44B-2058-4D57-8B70-B9C9C0F18C25} => "c:\program files (x86)\google\chrome\application\chrome.exe" http://ui.skype.com/ui/0/6.10.0.104/sr/abandoninstall?page=tsProgressBar
Task: {B92EE4C4-46CD-483F-872D-0C58D88340A0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {BAC4D830-6697-4A7F-9C8C-895D89CEDB0A} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {C2C9E732-C1EC-48C7-9521-7F421349EBE9} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [10387848 2016-09-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {C4B7C702-7887-40FD-B116-CE42ED368238} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {CCCEA08B-9E23-48DC-812B-F561B9C88EA3} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {CFB3AD50-D08A-4296-B58A-13FDB46262FC} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {D6401B21-E51D-4799-864A-BCDDC6EA658E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-02-11] (Google LLC -> Google LLC)
Task: {D74C3E24-935C-4A12-9DB3-8E01E6A57BA9} - System32\Tasks\{46B8785F-D974-4FBA-8F25-4CB5D0483046} => "c:\program files (x86)\google\chrome\application\chrome.exe" http://ui.skype.com/ui/0/6.10.0.104/sr/abandoninstall?page=tsProgressBar
Task: {DB5BA514-AE7F-443A-A00A-3B5B2B9C09BD} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DCD29833-352F-465A-91A0-4A1187E9530E} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {EA2D6F1C-5D1B-4B98-9393-652CB9A20ACE} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {FF7675DE-7D0E-449D-B2C2-C92ECC0497FF} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0c06eaca-d1e5-4191-b6d4-80249c5a6e3f}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{228cb3c4-4ceb-4fb1-8510-8fdf543659b3}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{eb378913-c4c5-40cf-8456-3bab330d6df7}: [DhcpNameServer] 192.168.1.1

Edge:
=======
DownloadDir: C:\Users\Marko\Downloads
Edge DefaultProfile: Default
Edge Profile: C:\Users\Marko\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-27]
Edge DownloadDir: C:\Users\Marko\Downloads

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-12-09] (VideoLAN) [File not signed]
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-12-09] (VideoLAN) [File not signed]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default [2021-03-08]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Battlefield Play4Free) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh [2015-02-14]
CHR Extension: (Free AdBlocker - block ads, browse safe) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\oldifepkckfmnlokobgdbjjfjjmhfgag [2021-02-11]
CHR Extension: (Chrome Media Router) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-25]
CHR Profile: C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2 [2021-01-30]
CHR HomePage: Profile 2 -> msn.com
CHR DefaultSearchURL: Profile 2 -> hxxps://www.bing.com/search?FORM=__PARAM__DF&PC=__PARAM__&q={searchTerms}
CHR DefaultSuggestURL: Profile 2 -> hxxps://www.bing.com/osjson.aspx?FORM=__PARAM__DF&PC=__PARAM__&query={searchTerms}
CHR Extension: (Slides) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-07-09]
CHR Extension: (Docs) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2020-07-09]
CHR Extension: (Google Drive) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25]
CHR Extension: (YouTube) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-07-09]
CHR Extension: (Tampermonkey) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2020-12-10]
CHR Extension: (MSN Homepage & Bing Search Engine) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2020-07-09]
CHR Extension: (Sheets) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-07-09]
CHR Extension: (Google Docs Offline) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-12-07]
CHR Extension: (Avast Online Security) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-07-09]
CHR Extension: ([CB] eRepublik) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hcllofidbkalfnhfapholimfflgpojdp [2020-07-09]
CHR Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hnmpcagpplmpfojmgmnngilcnanddlhb [2020-12-07]
CHR Extension: (Skype) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2020-07-09]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-07-09]
CHR Extension: (Gmail) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-25]
CHR Extension: (Chrome Media Router) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-10]
CHR Profile: C:\Users\Marko\AppData\Local\Google\Chrome\User Data\System Profile [2021-01-30]
CHR HKU\S-1-5-21-4496312-4232670094-2146604737-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

"SAntivirusIC" => service was unlocked. <==== ATTENTION

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269504 2016-05-13] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-03] (Advanced Micro Devices, Inc.) [File not signed]
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8477080 2020-12-16] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [621728 2020-12-16] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [351848 2020-12-16] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [58048 2020-12-16] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6875688 2018-06-27] (BattlEye Innovations e.K. -> )
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4132456 2019-02-24] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [780928 2018-06-28] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2018-06-11] (Hi-Rez Studios) [File not signed]
R2 HPSIService; C:\Windows\system32\HPSIsvc.exe [126880 2012-09-27] (Hewlett-Packard Company -> HP)
R2 IBuddyService; C:\Program Files (x86)\IBuddy\IBuddyService.exe [6276072 2018-11-11] (KAY ENTERPRICES LIMITED -> ITime Software) [File not signed] [File is in use]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-02-14] (Even Balance, Inc. -> )
R2 SAntivirusIC; C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusIC.exe [6940672 2021-03-07] (Digital Communications Inc -> Сorp DCom) <==== ATTENTION
R2 SAntivirusSvc; C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusService.exe [626688 2021-03-07] (Digital Communications Inc -> Сorp DCom) <==== ATTENTION
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5198064 2021-01-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-11] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [23240 2016-02-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35648 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [208024 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [357320 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [249304 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [98760 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16832 2020-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41272 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175248 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [521336 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107784 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [83360 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [850112 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [465656 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [214808 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326976 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-02-24] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-02-24] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S1 EpfwLWF; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [53360 2015-07-13] (ESET, spol. s r.o. -> ESET)
S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [221824 2016-04-24] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 TASANTIVIRUSKD; C:\Program Files (x86)\Digital Communications\SAntivirus\TASAntivirusKD.sys [85504 2021-03-07] (Digital Communications Inc -> Corp DCom) <==== ATTENTION
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-11] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-11] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-08 00:09 - 2021-03-08 00:11 - 000029352 _____ C:\Users\Marko\Desktop\FRST.txt
2021-03-08 00:08 - 2021-03-08 00:11 - 000000000 ____D C:\FRST
2021-03-08 00:08 - 2021-03-08 00:07 - 002301440 _____ (Farbar) C:\Users\Marko\Desktop\FRST64.exe
2021-03-08 00:07 - 2021-03-08 00:07 - 002301440 _____ (Farbar) C:\Users\Marko\Downloads\FRST64.exe
2021-03-07 20:34 - 2021-03-07 20:34 - 000000000 ____D C:\Users\Marko\AppData\LocalLow\AlawarEntertainment
2021-03-07 20:33 - 2021-03-07 20:34 - 000000957 _____ C:\Users\Marko\Desktop\Farm Frenzy Refreshed Collectors Edition.lnk
2021-03-07 20:33 - 2021-03-07 20:34 - 000000000 ____D C:\Users\Marko\AppData\Roaming\santivirusclient
2021-03-07 20:33 - 2021-03-07 20:33 - 000000000 ____D C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Farm Frenzy Refreshed Collectors Edition
2021-03-07 20:29 - 2021-03-07 20:29 - 000000000 ____D C:\Users\Marko\AppData\LocalLow\uTorrent
2021-03-07 20:28 - 2021-03-07 20:28 - 000000000 ____D C:\ProgramData\SAntivirus
2021-03-07 20:28 - 2021-03-07 20:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SAntivirus
2021-03-07 20:27 - 2021-03-07 20:27 - 000000000 ____D C:\Program Files (x86)\Digital Communications
2021-03-07 20:25 - 2021-03-07 20:25 - 000000000 ____D C:\Users\Marko\AppData\Local\TaskbarSystem
2021-03-07 20:24 - 2021-03-07 20:24 - 000016438 _____ C:\Users\Marko\AppData\Local\partner.bmp
2021-03-07 20:24 - 2021-03-07 20:24 - 000000000 ____D C:\ProgramData\IdleBuddy
2021-03-07 20:24 - 2021-03-07 20:24 - 000000000 ____D C:\Program Files\McAfee
2021-03-07 20:24 - 2021-03-07 20:24 - 000000000 ____D C:\Program Files (x86)\IBuddy
2021-03-07 20:23 - 2021-03-07 20:23 - 000000000 ____D C:\Users\Marko\AppData\Roaming\OutdatedMerrimack
2021-02-25 19:01 - 2021-02-25 19:01 - 000013768 _____ C:\Users\Marko\Downloads\RADOJKOVIC GORAN.xlsx
2021-02-23 19:07 - 2021-02-23 19:07 - 000166626 _____ C:\Users\Marko\Downloads\mp4.mp4
2021-02-22 21:40 - 2021-02-22 21:40 - 000215328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswd2a2c81538db42ad.tmp
2021-02-22 21:40 - 2021-02-22 21:39 - 000339680 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-02-17 23:54 - 2021-02-17 23:54 - 000344926 _____ C:\Users\Marko\Desktop\23633807.webp
2021-02-12 00:11 - 2021-02-12 00:11 - 001055018 _____ C:\Users\Marko\Downloads\videoplayback (2).mp4
2021-02-12 00:11 - 2021-02-12 00:11 - 001055018 _____ C:\Users\Marko\Desktop\beba.mp4
2021-02-11 19:37 - 2021-03-07 20:33 - 000003346 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-02-11 19:37 - 2021-03-07 20:33 - 000003122 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-02-11 19:37 - 2021-02-24 15:53 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-02-11 19:37 - 2021-02-24 15:53 - 000002211 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-02-11 19:37 - 2021-02-11 19:37 - 000000000 ____D C:\Program Files\Google
2021-02-11 19:13 - 2021-02-11 19:13 - 001304160 _____ (Google LLC) C:\Users\Marko\Downloads\ChromeSetup.exe
2021-02-10 21:06 - 2021-02-10 21:06 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-02-10 21:06 - 2021-02-10 21:06 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-02-10 21:06 - 2021-02-10 21:06 - 001314112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-02-10 21:06 - 2021-02-10 21:06 - 000010892 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-02-10 21:04 - 2021-02-10 21:04 - 000231232 _____ C:\WINDOWS\system32\containerdevicemanagement.dll

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-08 00:12 - 2016-03-22 13:28 - 000000000 ____D C:\Users\Marko\AppData\Roaming\uTorrent
2021-03-07 23:51 - 2016-05-31 15:17 - 000000000 ____D C:\Program Files\CCleaner
2021-03-07 22:53 - 2020-12-08 22:21 - 000004148 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{A7956F22-EBB7-4614-BE54-9FC400E895AD}
2021-03-07 21:10 - 2020-12-08 21:45 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-03-07 20:54 - 2020-12-08 22:21 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-03-07 20:34 - 2016-04-18 19:00 - 000000000 ____D C:\Users\Marko\AppData\Roaming\AlawarEntertainment
2021-03-07 20:33 - 2021-01-20 16:32 - 000003214 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6cda5521dd40b
2021-03-07 20:33 - 2020-12-08 22:21 - 000003764 _____ C:\WINDOWS\system32\Tasks\AMD Updater
2021-03-07 20:33 - 2020-12-08 22:21 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-03-07 20:33 - 2020-12-08 22:21 - 000003408 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-03-07 20:33 - 2020-12-08 22:21 - 000003184 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-03-07 20:33 - 2020-12-08 22:21 - 000003110 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater
2021-03-07 20:33 - 2020-12-08 22:21 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-03-07 20:33 - 2020-12-08 22:21 - 000002850 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4496312-4232670094-2146604737-1000
2021-03-07 20:33 - 2020-12-08 22:21 - 000002616 _____ C:\WINDOWS\system32\Tasks\SmartShare
2021-03-07 20:33 - 2020-12-08 22:21 - 000002254 _____ C:\WINDOWS\system32\Tasks\{A39CA44B-2058-4D57-8B70-B9C9C0F18C25}
2021-03-07 20:33 - 2020-12-08 22:21 - 000002254 _____ C:\WINDOWS\system32\Tasks\{46B8785F-D974-4FBA-8F25-4CB5D0483046}
2021-03-07 20:33 - 2020-12-08 22:21 - 000002222 _____ C:\WINDOWS\system32\Tasks\{B67810E7-DD41-409F-8326-5720C56B0980}
2021-03-07 20:33 - 2020-12-08 22:21 - 000002170 _____ C:\WINDOWS\system32\Tasks\{26728685-951A-4125-B880-FD887E714FC8}
2021-03-07 20:33 - 2020-12-08 22:21 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2021-03-07 20:33 - 2013-07-27 09:35 - 000000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2021-03-07 20:32 - 2014-02-10 14:21 - 000000000 ____D C:\Games
2021-03-07 20:31 - 2020-11-21 13:37 - 227982120 _____ C:\Users\Marko\Downloads\setup.bin
2021-03-07 20:30 - 2020-11-21 13:38 - 000000000 _____ C:\Users\Marko\Downloads\Our official website is IGG-GAMES.COM, other sites are fake.txt
2021-03-07 20:30 - 2020-11-21 13:37 - 008191992 _____ (Razor 1911) C:\Users\Marko\Downloads\setup.exe
2021-03-07 20:30 - 2020-11-21 13:37 - 000000193 _____ C:\Users\Marko\Downloads\ONEHACK.US.url
2021-03-07 20:30 - 2020-08-10 23:00 - 000002761 _____ C:\Users\Marko\Downloads\razor.nfo
2021-03-07 20:30 - 2020-08-10 23:00 - 000000338 _____ C:\Users\Marko\Downloads\README.txt
2021-03-07 20:30 - 2020-08-10 23:00 - 000000202 _____ C:\Users\Marko\Downloads\PCGAMESTORRENTS.COM.url
2021-03-07 20:30 - 2020-08-10 23:00 - 000000196 _____ C:\Users\Marko\Downloads\IGG-GAMES.COM.url
2021-03-07 20:26 - 2020-12-08 22:21 - 000002214 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-03-07 20:24 - 2014-01-28 07:53 - 000000000 ____D C:\ProgramData\McAfee
2021-03-07 00:55 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-03-06 15:54 - 2020-06-06 10:07 - 000002426 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-03-06 15:54 - 2020-06-06 10:07 - 000002264 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2021-03-06 15:54 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-03-06 15:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-02-28 20:51 - 2018-07-06 17:06 - 000000000 ___RD C:\Users\Marko\Desktop\Poso
2021-02-27 23:08 - 2020-12-08 21:50 - 000002401 _____ C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-27 23:08 - 2016-05-19 16:03 - 000000000 ___RD C:\Users\Marko\OneDrive
2021-02-27 18:27 - 2019-08-17 12:45 - 000000000 ____D C:\Users\Marko\AppData\Local\CrashDumps
2021-02-22 23:34 - 2018-01-08 17:56 - 000000000 ____D C:\Users\Marko\AppData\Local\Packages
2021-02-22 21:41 - 2020-10-13 22:04 - 000175248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-02-22 21:41 - 2019-07-07 16:18 - 000465656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-02-22 21:40 - 2020-04-15 12:19 - 000521336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-02-22 21:40 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-02-22 21:40 - 2019-07-07 16:18 - 000326976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-02-22 21:40 - 2019-07-07 16:18 - 000249304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-02-22 21:40 - 2019-07-07 16:18 - 000107784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-02-22 21:40 - 2019-07-07 16:18 - 000098760 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-02-22 21:40 - 2019-07-07 16:18 - 000083360 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-02-22 21:40 - 2019-07-07 16:18 - 000041272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-02-22 21:39 - 2019-07-07 16:18 - 000850112 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-02-22 21:39 - 2019-07-07 16:18 - 000357320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-02-22 21:39 - 2019-07-07 16:18 - 000208024 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-02-22 21:39 - 2019-07-07 16:18 - 000035648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2021-02-20 16:44 - 2020-10-01 17:26 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-11 22:35 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-02-11 19:37 - 2013-06-27 17:23 - 000000000 ____D C:\Program Files (x86)\Google
2021-02-10 21:47 - 2013-06-27 19:05 - 000000000 ____D C:\ProgramData\AVAST Software
2021-02-10 21:39 - 2020-12-09 05:50 - 000823742 _____ C:\WINDOWS\system32\perfh00C.dat
2021-02-10 21:39 - 2020-12-09 05:50 - 000159842 _____ C:\WINDOWS\system32\perfc00C.dat
2021-02-10 21:39 - 2020-12-08 22:04 - 001947358 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-10 21:33 - 2020-12-08 22:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-02-10 21:33 - 2020-11-03 23:33 - 000008192 ___SH C:\DumpStack.log.tmp
2021-02-10 21:33 - 2019-12-07 10:03 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2021-02-10 21:33 - 2018-06-28 18:15 - 000000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2021-02-10 21:27 - 2020-12-08 21:45 - 000438128 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-02-10 21:23 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-02-10 21:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2021-02-10 21:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-02-10 21:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-02-10 21:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-02-10 21:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-02-10 21:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-02-10 21:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-02-10 21:23 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-02-10 21:23 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2021-02-10 21:15 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-02-10 17:11 - 2013-09-22 10:12 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-02-10 17:00 - 2013-06-27 18:14 - 130141752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Files in the root of some directories ========

2021-03-07 20:24 - 2021-03-07 20:24 - 000016438 _____ () C:\Users\Marko\AppData\Local\partner.bmp

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================




https://www.mycity.rs/must-login.png

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8616
  • Gde živiš: Novi Beograd

Zdravo,

Preuzmi AdwCleaner i sačuvaj ga na Desktop
Dvoklikom pokreni program.
U EULA prozoru klikni na I agree.
Klikni na dugme Scan i sačekaj da se završi skeniranje.


Klikni na dugme Quarantine i pričekaj da program završi.
Program će zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni Continue kao potvrdu.
Pojavit će se poruka da računar treba restartovati. Klikni OK

Računar će se restartovati, a potom otvoriti Notepad (C:\Adwcleaner\AdwCleaner[C0].txt) sa izvještajem.
Sačuvaj taj izvještaj na Desktop i okači ga uz poruku koristeći opciju "Prikači fajl"

offline
  • Pridružio: 18 Jan 2009
  • Poruke: 203

Evo fajl


https://www.mycity.rs/must-login.png

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8616
  • Gde živiš: Novi Beograd

Postavi mi novi FRST log.
Kakvo je stanje?

offline
  • Pridružio: 18 Jan 2009
  • Poruke: 203

Napisano: 08 Mar 2021 23:58

Ja obrisao predhodne fajlove sa desktopa koje sam postavio na pocetku, mislio sam da se ne dupliraju.
Medjutim sad oba nova fajla potpuno prazna posle skeniranja. Nesto sam pogresio sigurno.

Dopuna: 09 Mar 2021 0:00

SAntivirusService. ovo mi je ostalo na dosta mesta a nisam ja instalirao to je uletelo juce isto.

Dopuna: 09 Mar 2021 0:03

iBuddy je i dalje prisutan, vidim ga u control panelu

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8616
  • Gde živiš: Novi Beograd

SKini ponovo FRST pa skeniraj. Probaj tako.

offline
  • Pridružio: 18 Jan 2009
  • Poruke: 203

helen1 ::SKini ponovo FRST pa skeniraj. Probaj tako.

Skinuo ponovo i skenirao opet prazni fajlovi.
Kaze da ne moze da nadje fajl i pita da otvori novi ja kliknem yes ali fajlovi su prazni

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8616
  • Gde živiš: Novi Beograd

Preimenuj FRST.exe u uninstall.exe i pokreni ga. To ce obrisati FRST i sve dodatne fajlove koje su mu bili potrebni za rad. Uradi to ako jos negde imas FRST instaliran.

Skini onda FRST ponovo, pa probaj. Ako nece, probacemo nesto drugo.

offline
  • Pridružio: 18 Jan 2009
  • Poruke: 203

helen1 ::Postavi mi novi FRST log.
Kakvo je stanje?


Evo ide novi log.
Stanje nije najbolje i dalje koci i iskacu povremeno ti prozori od tog kobajagi antivirus programa SA antivirus koji se sam instalirao. IBuddy je i dalje prisutan

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-02-2021
Ran by Marko (administrator) on MARKO-PC (11-03-2021 21:17:34)
Running from C:\Users\Marko\Downloads
Loaded Profiles: Marko
Platform: Windows 10 Pro Version 2004 19041.867 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cnext.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atiesrxx.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <3>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Digital Communications Inc -> Сorp DCom) C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusClient.exe
(Digital Communications Inc -> Сorp DCom) C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusService.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <10>
(Hewlett-Packard Company -> HP) C:\Windows\System32\HPSIsvc.exe
(Hi-Rez Studios) [File not signed] C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(LG Electronics Inc. -> LG Electronics Inc.) C:\Program Files (x86)\LG Software\LG Smart Share\Update\SmartShareTray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2102.8653.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2101.10.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\cnext.exe [4926664 2016-02-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13196432 2012-09-25] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [116960 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58584 2017-05-30] (Raptr, Inc -> Raptr, Inc)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-4496312-4232670094-2146604737-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [735336 2019-02-24] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-4496312-4232670094-2146604737-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32414392 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Windows x64\Print Processors\HP1100PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1100PP.DLL [74240 2012-08-31] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\HP1100LM: C:\WINDOWS\system32\HP1100LM.DLL [288768 2012-08-31] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\89.0.4389.82\Installer\chrmstp.exe [2021-03-11] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk [2015-06-20]
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {037A0A66-E354-4822-9BD6-4ECB3BDC0B0F} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {06A4BC28-E85A-4B4C-9B64-5441EFF04CD9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269504 2016-05-13] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {0F41C723-7A99-4383-810A-7728FDD62172} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {12A78173-1AC1-4DCD-A601-F0D36B607AE6} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {12E7DD76-B7A2-4A08-8DA0-DAFF872CBE03} - System32\Tasks\{26728685-951A-4125-B880-FD887E714FC8} => C:\Program Files (x86)\Arab-GB\SniperGhostWarrior2\Bin32\SniperGhostWarrior2.exe
Task: {136C51BC-E9A9-4D0F-AD9E-51CABD802063} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {156250F9-698A-419A-B4D0-5379EDE1E004} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {20595249-6038-40A7-9648-81B0818A2682} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2682CA35-D176-47D5-95C1-C74D6872EE76} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {27B77C04-2350-4CAE-8D0E-332821872F25} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {287F719B-B262-4650-BD94-BD2C20201B6E} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2AE6E0C9-449E-458C-AB7F-ACA55B0CB758} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {2D9E4573-8BF1-483B-8258-F76595C74299} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2FB0BC02-BBC5-47B0-A1C8-90AFCEF8052C} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {3A6DB8BC-7338-4F66-9D09-C2912CCACF5C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26896568 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {4685259F-0229-423E-A773-14343630E144} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {489C6197-F61F-4774-9BB7-14170219E88C} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {4BDB5680-26F3-4DB3-A9F2-225EBF6287AD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {564E8398-2F22-491C-A2DF-EFCE985E6BB3} - System32\Tasks\SmartShare => C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe [495136 2014-12-05] (LG Electronics Inc. -> LG Electronics Inc.)
Task: {58315380-A2AF-498F-8631-5733659A23D8} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {5E33504D-DFA7-499F-8972-C116DCDDB377} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {61F35F1D-19B6-44F6-B7E2-36AA79E9E77E} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6405AF98-4DBA-47D7-A96B-53E3195ED857} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {64AB1732-C2A3-429F-9ECE-9C2EBF1F8310} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {66E2572C-AB26-4864-B01B-1D2374400A62} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {69C29C2B-64C3-4FAC-A4F1-05F5DAD32D84} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7F93CFFC-9535-4689-AEE0-5D6406C9C2AC} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4682976 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
Task: {86EB65D1-D1BE-4095-BBC3-96A1E8D008B7} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {8BE1527D-3124-4AD2-A2C5-77D3E78FD6DE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-02-11] (Google LLC -> Google LLC)
Task: {8D676019-CA5F-4D65-96AB-4A8CED22C7F9} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {8D8CFB4F-ACAB-438F-9A78-4301E6639E01} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {902822C0-977E-4361-AFB7-AD14B3A659A1} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {90E5BB0D-F6CA-4725-BA9D-553BFB7399E9} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {928ACCB6-7351-4C64-8E41-43AD9E56AD64} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {93BC9201-FDE8-42F1-B3B2-38BDB5854269} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {95435C83-F9D8-4CF4-B930-BFB0B71B6C53} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1791712 2021-02-23] (Avast Software s.r.o. -> Avast Software)
Task: {9AEDF1F6-5849-49C0-A11C-401F9C28B94D} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {A2F1D34A-6B38-44FC-89BE-7906E589D137} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {A4F7B8F5-5A34-4EF9-91E1-61F7457D2FB1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A881BDDA-BF39-41F1-9309-E6E3761FD136} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {AB5C80CA-8BA4-4387-A5B1-3E7EA11CB2CA} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B05CBEBC-BD2F-4D9E-A4C6-3349C25A6E2F} - System32\Tasks\{B67810E7-DD41-409F-8326-5720C56B0980} => C:\Windows\system32\pcalua.exe -a E:\DDPlayCam\DDPlayCam.exe -d E:\DDPlayCam
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B6763036-5941-48A1-9650-69C9236E9E1C} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {B6F34B4B-4BEF-4803-8897-D972260C6F2C} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {B7DB3670-115E-4013-B2AF-CF048895A694} - System32\Tasks\{A39CA44B-2058-4D57-8B70-B9C9C0F18C25} => "c:\program files (x86)\google\chrome\application\chrome.exe" http://ui.skype.com/ui/0/6.10.0.104/sr/abandoninstall?page=tsProgressBar
Task: {B92EE4C4-46CD-483F-872D-0C58D88340A0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {BAC4D830-6697-4A7F-9C8C-895D89CEDB0A} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {C2C9E732-C1EC-48C7-9521-7F421349EBE9} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [10387848 2016-09-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {C4B7C702-7887-40FD-B116-CE42ED368238} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {CCCEA08B-9E23-48DC-812B-F561B9C88EA3} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {CFB3AD50-D08A-4296-B58A-13FDB46262FC} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {D6401B21-E51D-4799-864A-BCDDC6EA658E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-02-11] (Google LLC -> Google LLC)
Task: {D74C3E24-935C-4A12-9DB3-8E01E6A57BA9} - System32\Tasks\{46B8785F-D974-4FBA-8F25-4CB5D0483046} => "c:\program files (x86)\google\chrome\application\chrome.exe" http://ui.skype.com/ui/0/6.10.0.104/sr/abandoninstall?page=tsProgressBar
Task: {DB5BA514-AE7F-443A-A00A-3B5B2B9C09BD} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DCD29833-352F-465A-91A0-4A1187E9530E} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {EA2D6F1C-5D1B-4B98-9393-652CB9A20ACE} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {FF7675DE-7D0E-449D-B2C2-C92ECC0497FF} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0c06eaca-d1e5-4191-b6d4-80249c5a6e3f}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{228cb3c4-4ceb-4fb1-8510-8fdf543659b3}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{eb378913-c4c5-40cf-8456-3bab330d6df7}: [DhcpNameServer] 192.168.1.1

Edge:
=======
DownloadDir: C:\Users\Marko\Downloads
Edge DefaultProfile: Default
Edge Profile: C:\Users\Marko\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-27]
Edge DownloadDir: C:\Users\Marko\Downloads

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-12-09] (VideoLAN) [File not signed]
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-12-09] (VideoLAN) [File not signed]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default [2021-03-11]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Free AdBlocker - block ads, browse safe) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\oldifepkckfmnlokobgdbjjfjjmhfgag [2021-02-11]
CHR Extension: (Chrome Media Router) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-11]
CHR Profile: C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2 [2021-01-30]
CHR Extension: (Slides) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-07-09]
CHR Extension: (Docs) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2020-07-09]
CHR Extension: (Google Drive) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25]
CHR Extension: (YouTube) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-07-09]
CHR Extension: (Tampermonkey) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2020-12-10]
CHR Extension: (MSN Homepage & Bing Search Engine) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2020-07-09]
CHR Extension: (Sheets) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-07-09]
CHR Extension: (Google Docs Offline) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-12-07]
CHR Extension: (Avast Online Security) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-07-09]
CHR Extension: ([CB] eRepublik) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hcllofidbkalfnhfapholimfflgpojdp [2020-07-09]
CHR Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hnmpcagpplmpfojmgmnngilcnanddlhb [2020-12-07]
CHR Extension: (Skype) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2020-07-09]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-07-09]
CHR Extension: (Gmail) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-25]
CHR Extension: (Chrome Media Router) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-10]
CHR Profile: C:\Users\Marko\AppData\Local\Google\Chrome\User Data\System Profile [2021-01-30]
CHR HKU\S-1-5-21-4496312-4232670094-2146604737-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269504 2016-05-13] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-03] (Advanced Micro Devices, Inc.) [File not signed]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8044056 2021-03-03] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [621608 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [352480 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56904 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6875688 2018-06-27] (BattlEye Innovations e.K. -> )
S4 DialogBlockingService; C:\WINDOWS\System32\DialogBlockingService.dll [76288 2021-03-11] (Microsoft Windows -> Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4132456 2019-02-24] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [780928 2018-06-28] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2018-06-11] (Hi-Rez Studios) [File not signed]
R2 HPSIService; C:\Windows\system32\HPSIsvc.exe [126880 2012-09-27] (Hewlett-Packard Company -> HP)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-02-14] (Even Balance, Inc. -> )
R2 SAntivirusSvc; C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusService.exe [626688 2021-03-07] (Digital Communications Inc -> Сorp DCom) <==== ATTENTION
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5352528 2021-03-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-11] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [23240 2016-02-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35648 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [208024 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [357320 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [249304 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [98760 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16832 2020-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41272 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175248 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [521336 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107784 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [83360 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [850112 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [465656 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215328 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326976 2021-02-22] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-02-24] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-02-24] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S1 EpfwLWF; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [53360 2015-07-13] (ESET, spol. s r.o. -> ESET)
S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [221824 2016-04-24] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 TASANTIVIRUSKD; C:\Program Files (x86)\Digital Communications\SAntivirus\TASAntivirusKD.sys [85504 2021-03-07] (Digital Communications Inc -> Corp DCom) <==== ATTENTION
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-11] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-11] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-11 21:17 - 2021-03-11 21:20 - 000027905 _____ C:\Users\Marko\Downloads\FRST.txt
2021-03-11 21:16 - 2021-03-11 21:16 - 002301440 _____ (Farbar) C:\Users\Marko\Downloads\FRST64.exe
2021-03-11 16:52 - 2021-03-11 16:52 - 000480256 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2021-03-11 16:51 - 2021-03-11 16:51 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-03-11 16:51 - 2021-03-11 16:51 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-03-11 16:51 - 2021-03-11 16:51 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-03-11 16:51 - 2021-03-11 16:51 - 000011359 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-03-11 16:50 - 2021-03-11 16:50 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-03-11 16:50 - 2021-03-11 16:50 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-03-11 16:49 - 2021-03-11 16:49 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-03-11 16:49 - 2021-03-11 16:49 - 001394024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-03-11 16:49 - 2021-03-11 16:49 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-03-11 16:49 - 2021-03-11 16:49 - 000091136 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-03-11 16:48 - 2021-03-11 16:48 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll
2021-03-08 21:30 - 2021-03-08 21:31 - 000000000 ____D C:\Users\Marko\AppData\Roaming\santivirusclient
2021-03-08 21:19 - 2021-03-08 21:22 - 000000000 ____D C:\AdwCleaner
2021-03-08 21:19 - 2021-03-08 21:19 - 008463216 _____ (Malwarebytes) C:\Users\Marko\Downloads\adwcleaner_8.1.exe
2021-03-08 21:19 - 2021-03-08 21:19 - 008463216 _____ (Malwarebytes) C:\Users\Marko\Desktop\adwcleaner_8.1.exe
2021-03-08 00:08 - 2021-03-11 21:19 - 000000000 ____D C:\FRST
2021-03-07 20:34 - 2021-03-07 20:34 - 000000000 ____D C:\Users\Marko\AppData\LocalLow\AlawarEntertainment
2021-03-07 20:33 - 2021-03-11 17:36 - 000000957 _____ C:\Users\Marko\Desktop\Farm Frenzy Refreshed Collectors Edition.lnk
2021-03-07 20:33 - 2021-03-07 20:33 - 000000000 ____D C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Farm Frenzy Refreshed Collectors Edition
2021-03-07 20:29 - 2021-03-07 20:29 - 000000000 ____D C:\Users\Marko\AppData\LocalLow\uTorrent
2021-03-07 20:28 - 2021-03-07 20:28 - 000000000 ____D C:\ProgramData\SAntivirus
2021-03-07 20:28 - 2021-03-07 20:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SAntivirus
2021-03-07 20:27 - 2021-03-07 20:27 - 000000000 ____D C:\Program Files (x86)\Digital Communications
2021-03-07 20:25 - 2021-03-07 20:25 - 000000000 ____D C:\Users\Marko\AppData\Local\TaskbarSystem
2021-03-07 20:24 - 2021-03-08 23:41 - 000000000 ____D C:\Program Files (x86)\IBuddy
2021-03-07 20:24 - 2021-03-07 20:24 - 000016438 _____ C:\Users\Marko\AppData\Local\partner.bmp
2021-03-07 20:24 - 2021-03-07 20:24 - 000000000 ____D C:\ProgramData\IdleBuddy
2021-03-07 20:23 - 2021-03-07 20:23 - 000000000 ____D C:\Users\Marko\AppData\Roaming\OutdatedMerrimack
2021-02-25 19:01 - 2021-02-25 19:01 - 000013768 _____ C:\Users\Marko\Downloads\RADOJKOVIC GORAN.xlsx
2021-02-23 19:07 - 2021-02-23 19:07 - 000166626 _____ C:\Users\Marko\Downloads\mp4.mp4
2021-02-22 21:40 - 2021-02-22 21:40 - 000215328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2021-02-22 21:40 - 2021-02-22 21:39 - 000339680 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-02-17 23:54 - 2021-02-17 23:54 - 000344926 _____ C:\Users\Marko\Desktop\23633807.webp
2021-02-12 00:11 - 2021-02-12 00:11 - 001055018 _____ C:\Users\Marko\Downloads\videoplayback (2).mp4
2021-02-12 00:11 - 2021-02-12 00:11 - 001055018 _____ C:\Users\Marko\Desktop\beba.mp4
2021-02-11 19:37 - 2021-03-11 20:52 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-02-11 19:37 - 2021-03-11 20:52 - 000002211 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-02-11 19:37 - 2021-03-11 18:26 - 000003346 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-02-11 19:37 - 2021-03-11 18:26 - 000003122 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-02-11 19:37 - 2021-02-11 19:37 - 000000000 ____D C:\Program Files\Google
2021-02-11 19:13 - 2021-02-11 19:13 - 001304160 _____ (Google LLC) C:\Users\Marko\Downloads\ChromeSetup.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-11 21:16 - 2013-06-27 19:05 - 000000000 ____D C:\ProgramData\AVAST Software
2021-03-11 21:14 - 2020-12-08 21:45 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-03-11 21:01 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-03-11 20:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-03-11 20:49 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-03-11 20:39 - 2020-12-08 22:21 - 000004148 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{A7956F22-EBB7-4614-BE54-9FC400E895AD}
2021-03-11 20:38 - 2016-05-31 15:17 - 000000000 ____D C:\Program Files\CCleaner
2021-03-11 20:31 - 2020-12-08 22:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-03-11 20:31 - 2020-11-03 23:33 - 000008192 ___SH C:\DumpStack.log.tmp
2021-03-11 20:31 - 2018-06-28 18:15 - 000000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2021-03-11 18:36 - 2019-12-07 10:03 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2021-03-11 18:33 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-03-11 18:32 - 2020-12-08 21:45 - 000457400 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-03-11 18:31 - 2013-07-27 09:35 - 000000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2021-03-11 18:28 - 2019-12-07 10:54 - 000000000 ___SD C:\WINDOWS\system32\AppV
2021-03-11 18:28 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-03-11 18:28 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-03-11 18:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-03-11 18:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-03-11 18:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2021-03-11 18:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-03-11 18:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-03-11 18:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-03-11 18:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-03-11 18:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-03-11 18:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-03-11 18:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2021-03-11 18:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-03-11 18:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-03-11 18:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-03-11 18:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-03-11 18:26 - 2021-01-20 16:32 - 000003214 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6cda5521dd40b
2021-03-11 18:26 - 2020-12-08 22:21 - 000003764 _____ C:\WINDOWS\system32\Tasks\AMD Updater
2021-03-11 18:26 - 2020-12-08 22:21 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-03-11 18:26 - 2020-12-08 22:21 - 000003408 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-03-11 18:26 - 2020-12-08 22:21 - 000003184 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-03-11 18:26 - 2020-12-08 22:21 - 000003110 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater
2021-03-11 18:26 - 2020-12-08 22:21 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-03-11 18:26 - 2020-12-08 22:21 - 000002850 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4496312-4232670094-2146604737-1000
2021-03-11 18:26 - 2020-12-08 22:21 - 000002616 _____ C:\WINDOWS\system32\Tasks\SmartShare
2021-03-11 18:26 - 2020-12-08 22:21 - 000002254 _____ C:\WINDOWS\system32\Tasks\{A39CA44B-2058-4D57-8B70-B9C9C0F18C25}
2021-03-11 18:26 - 2020-12-08 22:21 - 000002254 _____ C:\WINDOWS\system32\Tasks\{46B8785F-D974-4FBA-8F25-4CB5D0483046}
2021-03-11 18:26 - 2020-12-08 22:21 - 000002222 _____ C:\WINDOWS\system32\Tasks\{B67810E7-DD41-409F-8326-5720C56B0980}
2021-03-11 18:26 - 2020-12-08 22:21 - 000002214 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-03-11 18:26 - 2020-12-08 22:21 - 000002170 _____ C:\WINDOWS\system32\Tasks\{26728685-951A-4125-B880-FD887E714FC8}
2021-03-11 18:26 - 2020-12-08 22:21 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2021-03-11 17:08 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-03-11 15:59 - 2013-09-22 10:12 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-03-11 15:53 - 2013-06-27 18:14 - 131005360 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-03-11 15:46 - 2020-12-08 22:21 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-03-09 22:44 - 2018-07-06 17:06 - 000000000 ___RD C:\Users\Marko\Desktop\Poso
2021-03-08 01:10 - 2016-03-22 13:28 - 000000000 ____D C:\Users\Marko\AppData\Roaming\uTorrent
2021-03-07 20:34 - 2016-04-18 19:00 - 000000000 ____D C:\Users\Marko\AppData\Roaming\AlawarEntertainment
2021-03-07 20:32 - 2014-02-10 14:21 - 000000000 ____D C:\Games
2021-03-07 20:31 - 2020-11-21 13:37 - 227982120 _____ C:\Users\Marko\Downloads\setup.bin
2021-03-07 20:30 - 2020-11-21 13:38 - 000000000 _____ C:\Users\Marko\Downloads\Our official website is IGG-GAMES.COM, other sites are fake.txt
2021-03-07 20:30 - 2020-11-21 13:37 - 008191992 _____ (Razor 1911) C:\Users\Marko\Downloads\setup.exe
2021-03-07 20:30 - 2020-11-21 13:37 - 000000193 _____ C:\Users\Marko\Downloads\ONEHACK.US.url
2021-03-07 20:30 - 2020-08-10 23:00 - 000002761 _____ C:\Users\Marko\Downloads\razor.nfo
2021-03-07 20:30 - 2020-08-10 23:00 - 000000338 _____ C:\Users\Marko\Downloads\README.txt
2021-03-07 20:30 - 2020-08-10 23:00 - 000000202 _____ C:\Users\Marko\Downloads\PCGAMESTORRENTS.COM.url
2021-03-07 20:30 - 2020-08-10 23:00 - 000000196 _____ C:\Users\Marko\Downloads\IGG-GAMES.COM.url
2021-03-07 20:24 - 2014-01-28 07:53 - 000000000 ____D C:\ProgramData\McAfee
2021-03-06 15:54 - 2020-06-06 10:07 - 000002426 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-03-06 15:54 - 2020-06-06 10:07 - 000002264 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2021-02-27 23:08 - 2020-12-08 21:50 - 000002401 _____ C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-27 23:08 - 2016-05-19 16:03 - 000000000 ___RD C:\Users\Marko\OneDrive
2021-02-27 18:27 - 2019-08-17 12:45 - 000000000 ____D C:\Users\Marko\AppData\Local\CrashDumps
2021-02-22 23:34 - 2018-01-08 17:56 - 000000000 ____D C:\Users\Marko\AppData\Local\Packages
2021-02-22 21:41 - 2020-10-13 22:04 - 000175248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-02-22 21:41 - 2019-07-07 16:18 - 000465656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-02-22 21:40 - 2020-04-15 12:19 - 000521336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-02-22 21:40 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-02-22 21:40 - 2019-07-07 16:18 - 000326976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-02-22 21:40 - 2019-07-07 16:18 - 000249304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-02-22 21:40 - 2019-07-07 16:18 - 000107784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-02-22 21:40 - 2019-07-07 16:18 - 000098760 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-02-22 21:40 - 2019-07-07 16:18 - 000083360 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-02-22 21:40 - 2019-07-07 16:18 - 000041272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-02-22 21:39 - 2019-07-07 16:18 - 000850112 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-02-22 21:39 - 2019-07-07 16:18 - 000357320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-02-22 21:39 - 2019-07-07 16:18 - 000208024 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-02-22 21:39 - 2019-07-07 16:18 - 000035648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2021-02-20 16:44 - 2020-10-01 17:26 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-11 19:37 - 2013-06-27 17:23 - 000000000 ____D C:\Program Files (x86)\Google
2021-02-10 21:39 - 2020-12-09 05:50 - 000823742 _____ C:\WINDOWS\system32\perfh00C.dat
2021-02-10 21:39 - 2020-12-09 05:50 - 000159842 _____ C:\WINDOWS\system32\perfc00C.dat
2021-02-10 21:39 - 2020-12-08 22:04 - 001947358 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-10 21:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2021-02-10 21:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-02-10 21:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-02-10 21:23 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-02-10 21:23 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing

==================== Files in the root of some directories ========

2021-03-07 20:24 - 2021-03-07 20:24 - 000016438 _____ () C:\Users\Marko\AppData\Local\partner.bmp

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
https://www.mycity.rs/must-login.png

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8616
  • Gde živiš: Novi Beograd

1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod:

CreateRestorePoint:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {0F41C723-7A99-4383-810A-7728FDD62172} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {136C51BC-E9A9-4D0F-AD9E-51CABD802063} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {156250F9-698A-419A-B4D0-5379EDE1E004} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {2682CA35-D176-47D5-95C1-C74D6872EE76} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {27B77C04-2350-4CAE-8D0E-332821872F25} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {2FB0BC02-BBC5-47B0-A1C8-90AFCEF8052C} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {4685259F-0229-423E-A773-14343630E144} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {4BDB5680-26F3-4DB3-A9F2-225EBF6287AD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {6405AF98-4DBA-47D7-A96B-53E3195ED857} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {9AEDF1F6-5849-49C0-A11C-401F9C28B94D} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {B6F34B4B-4BEF-4803-8897-D972260C6F2C} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {B92EE4C4-46CD-483F-872D-0C58D88340A0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {BAC4D830-6697-4A7F-9C8C-895D89CEDB0A} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {C4B7C702-7887-40FD-B116-CE42ED368238} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {CFB3AD50-D08A-4296-B58A-13FDB46262FC} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
R2 SAntivirusSvc; C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusService.exe [626688 2021-03-07] (Digital Communications Inc -> Сorp DCom) <==== ATTENTION
R1 TASANTIVIRUSKD; C:\Program Files (x86)\Digital Communications\SAntivirus\TASAntivirusKD.sys [85504 2021-03-07] (Digital Communications Inc -> Corp DCom) <==== ATTENTION
C:\ProgramData\SAntivirus
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SAntivirus
C:\Program Files (x86)\Digital Communications
C:\Users\Marko\AppData\Local\TaskbarSystem
C:\Program Files (x86)\IBuddy
C:\ProgramData\IdleBuddy
AlternateDataStreams: C:\ProgramData\TEMP:8CE646EE
EmptyTemp:


2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt
To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt
Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi.

3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj.
Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema.



Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku.
Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a.

Ko je trenutno na forumu
 

Ukupno su 596 korisnika na forumu :: 14 registrovanih, 3 sakrivenih i 579 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: 357magnum, Ageofloneliness, esx66, hyla, laurusri, Litostroton, MikeHammer, Nobunaga, panzerwaffe, Penzula, robert1979, shaja1, Snorks, Trpe Grozni