Opera i virus

Opera i virus

offline
  • Sad radim sve ono što pre nisam stizao.
  • Pridružio: 17 Maj 2006
  • Poruke: 18429
  • Gde živiš: I ja se pitam...

Zakačio mi se dosadan oglas i stalno se pojavljuje u ''Operi''. Moguće da sam ga dobio preko ''FB''. Prikazuje mi, povremeno, u donjem desnom uglu ekrana, na površini 8x8 cm (približno) i ponude s nekog sajta za upoznavanje.
Može pomoć kako da ovo očistim? Ne smeta mi, ali je dosadno.
Ps
Mislim da nemam nijedan AV program, korsitim samo CCleaner za čišćenje i to besplatnu verziju.

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8616
  • Gde živiš: Novi Beograd

Zar i tebi da linkujem uputstvo:
https://www.mycity.rs/Ambulanta/Kako-otvoriti-temu-u-Ambulanti.html

offline
  • Sad radim sve ono što pre nisam stizao.
  • Pridružio: 17 Maj 2006
  • Poruke: 18429
  • Gde živiš: I ja se pitam...

Napisano: 01 Okt 2022 9:17

helen1 ::Zar i tebi da linkujem uputstvo:
https://www.mycity.rs/Ambulanta/Kako-otvoriti-temu-u-Ambulanti.html


U pravu si, izvini. Nisam ovo radio sto godina, a sinoć sam to odradio na brzinu. Sad ću premestiti.

Dopuna: 01 Okt 2022 13:08

Malo da osvežim pamćenje. Ovaj prvi fajl kopiram ovde, a ovaj drugi (Aditional) kačim kao fajl...Nadam se da nisam pogrešio.

Izveštaj skeniranja od Farbar Recovery Scan Tool (FRST) (x64) Verzija: 30-08-2022
Pokrenuo Dragi (administrator) na DESKTOP-LPSUCGE (LENOVO 75157QG) (01-10-2022 13:45:47)
Pokrenuto sa C:\Users\Dragi\Desktop
Učitani Profili: Dragi
Platform: Microsoft Windows 10 Pro Verzija 21H2 19044.2006 (X64) Jezik: engleski (SAD) -> srpski (latinica, Srbija)
Podrazumevani pregledač: Opera
Režim pokretanja sistema: Normal

==================== Procesi (Na Beloj Listi) =================

(Ukoliko je stavka unešena u fixlist, proces ce biti zatvoren. Datoteka nece biti premešten.)

(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCopyAccelerator.exe
(C:\Users\Dragi\AppData\Local\Programs\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\Dragi\AppData\Local\Programs\Opera\90.0.4480.84\opera_crashreporter.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Opera Norway AS -> Opera Software) C:\Users\Dragi\AppData\Local\Programs\Opera\opera.exe <13>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22072.207.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe

==================== Registar (Na Beloj Listi) ===================

(Ukoliko je stavka unešena u fixlist, registru stavka ce biti vraćena na podrazumevanu vrednost ili uklonjena. Datoteka neće biti premeštena.)

HKU\S-1-5-21-2069552332-652828009-976385720-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38502416 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2069552332-652828009-976385720-1001\...\Run: [Opera Browser Assistant] => C:\Users\Dragi\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4137936 2022-09-14] (Opera Norway AS -> Opera Software)
HKLM\...\Windows x64\Print Processors\HP1020PrintProc: C:\Windows\System32\spool\prtprocs\x64\pphp1020.dll [65024 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\HPLJ1020LM: C:\WINDOWS\system32\zlhp1020.dll [192512 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\105.0.5195.127\Installer\chrmstp.exe [2022-09-18] (Google LLC -> Google LLC)

==================== Planirani Zadaci (Na Beloj Listi) ============

(Ukoliko je stavka unešena u fixlist, biće uklonjena iz registra. Datoteka neće biti premeštena ukoliko nije izlistana zasebno..)

Task: {20A5BA3F-D612-460C-A742-F05372EE385F} - System32\Tasks\Opera scheduled Autoupdate 1644864783 => C:\Users\Dragi\AppData\Local\Programs\Opera\launcher.exe [2538448 2022-09-05] (Opera Norway AS -> Opera Software)
Task: {30452B81-2A2C-46CE-914E-2A395B46ADFA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1555696 2022-08-03] (Adobe Inc. -> Adobe Inc.)
Task: {3E0490AD-8F9C-47BC-9787-B5B2F9291062} - System32\Tasks\CorelUpdateHelperTaskCore => C:\Program Files (x86)\Corel\CUH\v2\CUH.exe [1662200 2019-02-27] (Corel Corporation -> Corel Corporation)
Task: {6900B290-21AB-427A-9CF2-E9AD2225D862} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {7223BAAC-8446-4CD6-91D4-551A2511E90E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {76D6B81D-DE9A-43D5-80F9-D4FCB666D7AF} - System32\Tasks\CorelUpdateHelperTask-B7C6A86E11DAC26476C3436A30A38940 => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe [1662200 2019-02-27] (Corel Corporation -> Corel Corporation)
Task: {78D1524E-9CFD-46A2-9F3F-EC2E8C1846D7} - System32\Tasks\Microsoft Office 15 Sync Maintenance for DESKTOP-LPSUCGE-Dragi DESKTOP-LPSUCGE => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [469640 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {8295E0F5-5294-48AD-A866-E938FBBD35D1} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {88DF7A63-BE6F-4187-91F0-914C8013BA78} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-09-12] (Piriform Software Ltd -> Piriform)
Task: {8B08B823-48A9-4E8F-A5A9-5BD4526F0DD6} - System32\Tasks\Opera scheduled assistant Autoupdate 1644864785 => C:\Users\Dragi\AppData\Local\Programs\Opera\launcher.exe [2538448 2022-09-05] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Dragi\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {8FAFC2C2-6EFD-47B1-B8C1-C8A8117B229E} - System32\Tasks\GoogleUpdateTaskMachineCore{86716F50-B4FF-4579-A5AD-A573FFFC925B} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-02-14] (Google LLC -> Google LLC)
Task: {9CE0916D-8754-49E1-A6BC-B14F8B434762} - System32\Tasks\GoogleUpdateTaskMachineUA{54534BCC-E893-461C-AFED-819BD006C10A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-02-14] (Google LLC -> Google LLC)
Task: {AB099649-CC06-42F4-93E9-E7F2771B6586} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CF4E60A6-4166-4715-BB55-629AE7AF8F02} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D99DACB0-890B-47C8-B050-9F85C910288E} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4666896 2022-09-12] (Piriform Software Ltd -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "d47b2c80-f5a6-4b22-bafe-05c43d64b7f5" --version "6.04.10044" --silent
Task: {F4FD4FF0-DD0F-4820-B5E2-3C8FF9ACAB6E} - System32\Tasks\CCleanerSkipUAC - Dragi => C:\Program Files\CCleaner\CCleaner.exe [32204304 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F8316CCE-8219-466D-BE70-DDC35E7DE82F} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1642672 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {FC364508-B0C1-47D6-8AB8-44D6427B305D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)

(Ukoliko je stavka unešena u fixlist, planirani zadaci (.job) datoteke će biti premeštene. Datoteka koju zadatak izvršava neće biti uklonjena.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Na Beloj Listi) ====================

(Ukoliko je stavka unešena u fixlist, ako je to registru stavka, biće uklonjena ili vraćena na podrazumevanu vrednost.)

Hosts: Postoji više od jednog unosa u Hosts. Pogledati Hosts sekciju iz Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{566c4852-a87a-47af-aaf5-f87a42987917}: [DhcpNameServer] 192.168.1.1

Edge:
=======
Edge Extension: (Nema Imena) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nije pronađena]
Edge Extension: (Nema Imena) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nije pronađena]
Edge Extension: (Nema Imena) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nije pronađena]
Edge Extension: (Nema Imena) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nije pronađena]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Dragi\AppData\Local\Microsoft\Edge\User Data\Default [2022-10-01]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-09-08] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\Dragi\AppData\Local\Google\Chrome\User Data\Default [2022-10-01]
CHR Extension: (Google Docs Offline) - C:\Users\Dragi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-09-30]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Dragi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-02-14]

Opera:
=======
OPR Profile: C:\Users\Dragi\AppData\Roaming\Opera Software\Opera Stable [2022-10-01]
OPR Notifications: Opera Stable -> hxxps://edukr.ru; hxxps://oruzjeonline.com
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Dragi\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-06-30]
OPR Extension: (Opera Crypto Wallet) - C:\Users\Dragi\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2022-07-18]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\Dragi\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-02-14]

==================== Servisi (Na Beloj Listi) ===================

(Ukoliko je stavka unešena u fixlist, biće uklonjena iz registra. Datoteka neće biti premeštena ukoliko nije izlistana zasebno..)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172264 2022-08-03] (Adobe Inc. -> Adobe Inc.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082896 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
R2 PSI_SVC_2; C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [224192 2022-09-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe [3125112 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe [133560 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drajveri (Na Beloj Listi) ===================

(Ukoliko je stavka unešena u fixlist, biće uklonjena iz registra. Datoteka neće biti premeštena ukoliko nije izlistana zasebno..)

S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Datoteka nije potpisana]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Datoteka nije potpisana]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-09-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [453904 2022-09-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [94480 2022-09-07] (Microsoft Windows -> Microsoft Corporation)
R3 yukonw8; C:\WINDOWS\System32\drivers\yk63x64.sys [288768 2019-12-07] (Microsoft Windows -> Marvell)

==================== NetSvcs (Na Beloj Listi) ===================

(Ukoliko je stavka unešena u fixlist, biće uklonjena iz registra. Datoteka neće biti premeštena ukoliko nije izlistana zasebno..)


==================== Mesec dana (kreirane) (Na Beloj Listi) =========

(Ukoliko je stavka unešena u fixlist, Datoteka/Fascikla će biti premeštena.)

2022-10-01 13:45 - 2022-10-01 13:46 - 000014268 _____ C:\Users\Dragi\Desktop\FRST.txt
2022-10-01 13:45 - 2022-10-01 13:46 - 000000000 ____D C:\FRST
2022-10-01 13:44 - 2022-10-01 13:44 - 002371072 _____ (Farbar) C:\Users\Dragi\Desktop\FRST64.exe
2022-10-01 10:25 - 2022-10-01 10:31 - 000000000 ____D C:\Users\Dragi\Desktop\НЕУТРОНСКА БОМБА
2022-09-30 18:52 - 2022-09-30 21:42 - 000000000 ____D C:\Users\Dragi\Desktop\DONBAS I KOSOVO
2022-09-29 21:08 - 2022-09-29 21:10 - 000000000 ____D C:\Users\Dragi\Desktop\КАКО СЕ УБИО ХИТЛЕР
2022-09-27 15:15 - 2022-09-27 15:15 - 000000000 ____D C:\Users\Dragi\AppData\LocalLow\webviewdata
2022-09-21 10:31 - 2022-10-01 13:19 - 000003472 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2022-09-21 10:31 - 2022-10-01 13:19 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2022-09-14 13:21 - 2022-09-14 13:21 - 000413696 _____ C:\WINDOWS\system32\AzureCheck.dll
2022-09-14 13:21 - 2022-09-14 13:21 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-09-14 13:21 - 2022-09-14 13:21 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2022-09-14 13:21 - 2022-09-14 13:21 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-09-14 13:21 - 2022-09-14 13:21 - 000011813 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-09-14 13:11 - 2022-09-14 13:11 - 000000000 ___HD C:\$WinREAgent
2022-09-12 21:15 - 2022-09-12 21:15 - 037240326 _____ C:\Users\Dragi\Downloads\ОТ А. БЕЛАНОВА_ АДЖИМУШКАЙ - 8 серий.zip
2022-09-10 16:12 - 2022-09-10 16:12 - 000000000 ____D C:\Users\Dragi\AppData\Roaming\com.adobe.dunamis
2022-09-07 17:56 - 2022-08-04 15:48 - 009560341 _____ C:\Users\Dragi\Desktop\УКОРИЧЕНА МУЗИКА ГЛАВНИ ТЕКСТ.pdf
2022-09-02 21:27 - 2022-09-28 15:32 - 000000000 ____D C:\Users\Dragi\Desktop\ORUŽJE U RADU

==================== Mesec dana (modifikovane) ==================

(Ukoliko je stavka unešena u fixlist, Datoteka/Fascikla će biti premeštena.)

2022-10-01 13:35 - 2022-03-17 15:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-10-01 13:19 - 2022-02-27 21:21 - 000000000 ____D C:\Program Files\CCleaner
2022-10-01 13:18 - 2022-02-14 20:54 - 000000000 ____D C:\Program Files (x86)\Google
2022-10-01 10:36 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-10-01 09:49 - 2022-04-21 17:29 - 000004170 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{3E3B44AA-A071-4A8A-865B-710577147DC0}
2022-09-30 19:48 - 2022-03-17 15:56 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2069552332-652828009-976385720-1001
2022-09-30 19:48 - 2022-03-17 15:56 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2069552332-652828009-976385720-1001
2022-09-30 19:48 - 2022-03-17 15:48 - 000002387 _____ C:\Users\Dragi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-09-30 16:12 - 2022-03-17 15:56 - 000005244 _____ C:\WINDOWS\system32\Tasks\Microsoft Office 15 Sync Maintenance for DESKTOP-LPSUCGE-Dragi DESKTOP-LPSUCGE
2022-09-30 16:00 - 2022-02-14 21:21 - 000000000 ____D C:\Users\Dragi\Desktop\GAVRA ZLATNA REZERVA
2022-09-30 15:50 - 2022-02-14 21:21 - 000000000 ____D C:\Users\Dragi\Desktop\jJEDAN U DESET MILION
2022-09-29 13:44 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-09-29 13:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-09-29 11:03 - 2022-02-14 21:20 - 000000000 ___RD C:\Stari Desktop
2022-09-28 10:50 - 2022-03-17 15:47 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-28 10:50 - 2022-03-17 15:47 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-09-26 17:40 - 2022-02-14 21:50 - 000000000 ____D C:\Users\Dragi\AppData\Roaming\XnView
2022-09-25 19:54 - 2022-06-11 13:49 - 000000000 ____D C:\Users\Dragi\Desktop\ORUŽJE ONLINE ZLATNA REZERVA
2022-09-21 14:41 - 2022-02-14 19:59 - 000000000 ____D C:\Users\Dragi\AppData\Local\Packages
2022-09-21 10:31 - 2022-03-17 15:56 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-09-18 11:27 - 2022-02-14 20:55 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-09-18 11:27 - 2022-02-14 20:55 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-09-17 12:37 - 2022-06-01 10:18 - 000079610 _____ C:\Users\Dragi\Desktop\ŠIFRE.pdf
2022-09-17 12:36 - 2022-02-14 21:23 - 000018879 _____ C:\Users\Dragi\Desktop\ŠIFRE.odt
2022-09-15 08:18 - 2022-03-17 15:56 - 000004460 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1644864785
2022-09-15 08:17 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-09-14 15:40 - 2022-03-18 00:17 - 000769904 _____ C:\WINDOWS\system32\perfh019.dat
2022-09-14 15:40 - 2022-03-18 00:17 - 000151462 _____ C:\WINDOWS\system32\perfc019.dat
2022-09-14 15:40 - 2022-03-17 15:54 - 001752884 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-09-14 15:36 - 2022-03-17 15:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-09-14 15:36 - 2022-03-17 15:46 - 000008192 ___SH C:\DumpStack.log.tmp
2022-09-14 13:55 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-09-14 13:54 - 2022-03-17 15:46 - 002839520 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-09-14 13:52 - 2019-12-07 11:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-09-14 13:52 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-09-14 13:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-09-14 13:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-09-14 13:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-09-14 13:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-09-14 13:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-09-14 13:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-09-14 13:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-09-14 13:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-09-14 13:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-09-14 13:26 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-09-14 13:21 - 2022-03-17 15:47 - 003011072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-09-14 12:23 - 2022-02-15 10:39 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-09-14 12:19 - 2022-02-15 10:39 - 141646296 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-09-10 13:20 - 2022-03-17 15:56 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-09-10 13:20 - 2022-02-14 21:02 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-09-10 13:20 - 2022-02-14 21:02 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk
2022-09-07 13:41 - 2022-03-17 15:56 - 000004206 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1644864783
2022-09-07 13:41 - 2022-02-14 20:53 - 000001405 _____ C:\Users\Dragi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera Browser.lnk
2022-09-07 11:37 - 2022-02-14 19:53 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd

==================== Datoteke u korenu nekih direktorijuma ========

2021-09-21 19:26 - 2021-09-21 19:26 - 000479232 _____ () C:\Users\Dragi\setup.exe

==================== SigCheck ============================

(Ne postoji automatizovan popravak za datoteke koji nisu prošle verifikaciju.)

==================== Kraj od FRST.txt ========================



https://www.mycity.rs/must-login.png

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8616
  • Gde živiš: Novi Beograd

Da probamo ovako...

1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod:

OPR Notifications: Opera Stable -> hxxps://edukr.ru; hxxps://oruzjeonline.com

2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt
To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt
Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi.

3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj.
Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema.



Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku.
Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a.

offline
  • Sad radim sve ono što pre nisam stizao.
  • Pridružio: 17 Maj 2006
  • Poruke: 18429
  • Gde živiš: I ja se pitam...

Nadam se da je to - to. Instaliran mi je OS na srpskom, pa dok sam se snašao da nađem fix...Wink
Izveštaj ispravaka od Farbar Recovery Scan Tool (x64) Verzija: 30-08-2022
Pokrenuo Dragi (01-10-2022 14:48:34) Run:1
Pokrenuto sa C:\Users\Dragi\Desktop
Učitani Profili: Dragi
Režim pokretanja sistema: Normal
==============================================

fixlist sadržaj:
*****************
OPR Notifications: Opera Stable -> hxxps://edukr.ru; hxxps://oruzjeonline.com
*****************

"OPR Notifications" => uspešno uklonjeno

==== Kraj od Fixlog 14:48:34 ====

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8616
  • Gde živiš: Novi Beograd

Ima li pomaka? Da li se jos pojavljuje?

offline
  • Sad radim sve ono što pre nisam stizao.
  • Pridružio: 17 Maj 2006
  • Poruke: 18429
  • Gde živiš: I ja se pitam...

helen1 ::Ima li pomaka? Da li se jos pojavljuje?

Сад се укључих. Хвала ти за помоћ, оне досаде нема више. Могуће да се нешто закачило за портал ''Оружје онлајн'', пошто ми они шаљу редовно обавештења кад нешто изађе. Оставићу на десктопу ову лепу алатку...и кад год ми неко затражи приступ за слање информација следи блок. Ziveli

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8616
  • Gde živiš: Novi Beograd

Odlicno.

Kad budes hteo preimenuj FRST.exe u uninstall.exe i pokreni ga. To ce obrisati FRST i sve dodatne fajlove koji su mu bili potrebni za rad.

offline
  • Sad radim sve ono što pre nisam stizao.
  • Pridružio: 17 Maj 2006
  • Poruke: 18429
  • Gde živiš: I ja se pitam...

helen1 ::Odlicno.

Kad budes hteo preimenuj FRST.exe u uninstall.exe i pokreni ga. To ce obrisati FRST i sve dodatne fajlove koji su mu bili potrebni za rad.


Хвала ти. Урадићу тако. Нека стоји на десктопу, не тражи хлеб да једе, а корисна ствар. Не може човек увек да буде на опрезу, па се зачас нешто накачи. Поздрав!

Ko je trenutno na forumu
 

Ukupno su 792 korisnika na forumu :: 32 registrovanih, 8 sakrivenih i 752 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: ajo baba, Andrija357, Arahne, Areal84, Atomski čoban, Bane san, ccoogg123, dule10savic, Georgius, Još malo pa deda, Kubovac, ladro, mile23, Milometer, milutin134, MiroslavD, Mixelotti, mrvica78, Nemanja.M, powSrb, procesor, raptorsi, Ripanjac, RJ, S2M, ss10, stegonosa, suton, Vlad000, vladetije, zbazin, zziko