Popravka registrija

1

Popravka registrija

offline
  • Pridružio: 28 Okt 2014
  • Poruke: 162

Pozz, htjeo bi ako postoji neka mogucnost da popravim registri windowsa ako je to moguce, te pored toga provjeriti stanje kompa dali ima virusa i tako to.

mycity.rs/must-login.png
mycity.rs/must-login.png

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8616
  • Gde živiš: Novi Beograd

Izvini sto tek sad pisem, bio sam odsutan. Ako je potrebna neka pomoc, javi.

offline
  • Pridružio: 28 Okt 2014
  • Poruke: 162

helen1 ::Izvini sto tek sad pisem, bio sam odsutan. Ako je potrebna neka pomoc, javi.

Poz, pa vec sam naveo da mi je potrebna pomoc oko oporavka ostecenih fajlova registrija windowsa, i ono cisto provjera da nemam slucajno nekih virusa na kompu. Surprised

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8616
  • Gde živiš: Novi Beograd

Da ti registar popravim, to ne znam, mogu jedino da vidim da li ima virusa.

Postavi nove logove, pa cu pogledati.

offline
  • Pridružio: 28 Okt 2014
  • Poruke: 162

helen1 ::Da ti registar popravim, to ne znam, mogu jedino da vidim da li ima virusa.

Postavi nove logove, pa cu pogledati.


Ako ne znas, mozes li mi onda preporuciti neki program koji bi mi pomogao da popravim registri windowsa bez nekih problema?

Sto se tice novih logova evo ih u prilogu.
mycity.rs/must-login.png
mycity.rs/must-login.png

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-08-2022
Ran by Win7 (administrator) on WIN7-PC (Gigabyte Technology Co., Ltd. P85-D3) (21-08-2022 16:06:04)
Running from C:\Users\Win7\Downloads\New folder\FRST-OlderVersion
Loaded Profiles: Win7
Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AdobeGCClient.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Avast Software s.r.o. -> AVAST Software) C:\Programi\Avast\AvastUI.exe
(C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe <2>
(C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe ->) (Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(C:\Program Files (x86)\ASUS\GPU TweakII\GPUTweakII.exe ->) (ASUSTEK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\GPU TweakII\Monitor.exe
(C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(C:\Programi\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Programi\Avast\aswEngSrv.exe
(explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Users\Win7\AppData\Local\Programs\Opera\assistant\browser_assistant.exe <2>
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(explorer.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\RAPID\CacheFilter\SamsungRapidApp.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <15>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(services.exe ->) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Programi\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Programi\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Programi\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Programi\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Programi\Avast\wsc_proxy.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(services.exe ->) (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(services.exe ->) (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Windows\System32\RAPID\SamsungRapidSvc.exe
(services.exe ->) (Solid State System Co., Ltd. -> SSS) C:\Windows\System32\AudioDeviceService.exe
(services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.242\WsAppService.exe
(taskeng.exe ->) (ASUSTEK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\GPU TweakII\GPUTweakII.exe
(taskeng.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe <3>

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13423688 2013-02-26] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286192 2013-01-31] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-05-05] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [SamsungRapidApp] => C:\Program Files (x86)\Samsung\RAPID\CacheFilter\SamsungRapidApp.exe [176472 2019-07-04] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
HKLM\...\Run: [AvastUI.exe] => C:\Programi\Avast\AvLaunch.exe [213760 2022-08-01] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291128 2013-03-06] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [D3DOverrider] => "C:\Users\Win7\Downloads\PES2017 NO LAG\D3DOverrider\D3DOverriderWrapper.exe" /s (No File)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [MARVO HG9055 Driver] => C:\Program Files (x86)\MARVO HG9055 Driver\MARVO HG9055 Driver.exe [11099032 2020-01-02] (Solid State System) [File not signed]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-4024489933-1853363021-3339780435-1000\...\Run: [Opera Browser Assistant] => C:\Users\Win7\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4110832 2022-07-06] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-4024489933-1853363021-3339780435-1000\...\MountPoints2: F - F:\setup.exe
HKU\S-1-5-21-4024489933-1853363021-3339780435-1000\...\MountPoints2: {0ecad849-e776-11e5-a4fd-806e6f6e6963} - E:\DVDSetup.exe
HKU\S-1-5-21-4024489933-1853363021-3339780435-1000\...\MountPoints2: {16576304-0061-11ed-bc6f-94de80b82e62} - F:\AutoRun.exe
HKU\S-1-5-21-4024489933-1853363021-3339780435-1000\...\MountPoints2: {64b72f09-1147-11eb-abe8-94de80b82e62} - F:\AutoRun.exe
HKLM\...\Print\Monitors\HP 8911 Status Monitor: c:\windows\system32\hpinksts8911LM.dll [332176 2012-09-12] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2022-03-02] (Adobe Inc. -> Adobe Systems, Inc.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {107C016D-629A-4302-B979-F2AD1C16EED9} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.)
Task: {38B281F7-A2CA-40AD-8868-B23FAA098FA4} - System32\Tasks\{493C36DF-A38A-4CC1-B703-0A83249A546B} => C:\Windows\system32\pcalua.exe -a "D:\Igre\Battlefield 3â„¢\__Installer\vc\vc2008sp1\redist\vcredist_x64.exe" -d "D:\Igre\Battlefield 3â„¢\__Installer\vc\vc2008sp1\redist"
Task: {5D5AF0D7-0AFF-4498-AAC3-BDA6E37E0698} - System32\Tasks\Opera scheduled assistant Autoupdate 1581091594 => C:\Users\Win7\AppData\Local\Programs\Opera\launcher.exe [2527184 2022-08-18] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Win7\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {6D5BE4E6-9EB9-48CD-83AF-D8C4F545F476} - System32\Tasks\GPU Tweak II => C:\Program Files (x86)\ASUS\GPU TweakII\GPUTweakII.exe [13296792 2022-02-23] (ASUSTEK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {6F12F8DC-C22C-4E58-80A3-7CD11DEAD830} - System32\Tasks\update-S-1-5-21-4024489933-1853363021-3339780435-1000 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {81D520A2-BD1B-4CD3-A07C-42982FACC924} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-05-05] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {967C1E12-571E-47A7-BA59-B58C38D88986} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2250576 2022-05-24] (Avast Software s.r.o. -> Avast Software)
Task: {9BBB3DEF-683C-463C-9D73-8F76DE987BB8} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [121605552 2022-05-04] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
Task: {A6EB4D90-7F21-40A4-B45F-6B66121CD80E} - System32\Tasks\{B39A65C2-648C-43E0-AD55-18EF429E9036} => C:\Windows\system32\pcalua.exe -a "C:\Users\Win7\Downloads\Crysis repack Mr DJ\Redist\dxwesetup.exe" -d "C:\Users\Win7\Downloads\Crysis repack Mr DJ\Redist"
Task: {B8B6F546-0AA8-453C-BCF9-1961AE3C78B3} - System32\Tasks\{39EDDACF-08FF-4AA5-B603-3D0FEEA97C0D} => C:\Windows\system32\pcalua.exe -a C:\Users\Win7\Downloads\HeSuVi_2.0.0.1.exe -d C:\Users\Win7\Downloads
Task: {D59C4B8D-E668-4329-83C1-6DA3DD8474CA} - System32\Tasks\Opera scheduled Autoupdate 1576022251 => C:\Users\Win7\AppData\Local\Programs\Opera\launcher.exe [2527184 2022-08-18] (Opera Norway AS -> Opera Software)
Task: {D5DEFC89-6966-48CD-BC2E-9CBA13E39F5C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {D828301D-EBDA-4602-B357-517EFF37CEDA} - System32\Tasks\Avast Emergency Update => C:\Programi\Avast\AvEmUpdate.exe [4928768 2022-08-01] (Avast Software s.r.o. -> AVAST Software)
Task: {E3DEB627-844D-480F-A75B-F77F32D3622D} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\update-S-1-5-21-4024489933-1853363021-3339780435-1000.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-4024489933-1853363021-3339780435-1000] => http=127.0.0.1:8888
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0B7D66C4-A5D8-454B-B905-9E7D3A6BFC8A}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{0B7D66C4-A5D8-454B-B905-9E7D3A6BFC8A}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{DE7B5564-543C-4F20-9C5D-11A993C24EE2}: [DhcpNameServer] 192.168.42.129

FireFox:
========
FF DefaultProfile: 523o2192.default
FF ProfilePath: C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\523o2192.default [2022-08-21]
FF Homepage: Mozilla\Firefox\Profiles\523o2192.default -> hxxps://www.google.ba/
FF Extension: (AdBlocker Ultimate) - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\523o2192.default\Extensions\adblockultimate@adblockultimate.net.xpi [2022-05-25]
FF Extension: (Firefox Homepage) - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\523o2192.default\Extensions\cehomepage@mozillaonline.com.xpi [2022-07-02] [UpdateUrl:hxxps://addons.firefox.com.cn/chinaedition/addons/updates.json?reqVersion=%REQ_VERSION%&id=%ITEM_ID%&version=%ITEM_VERSION%&maxAppVersion=%ITEM_MAXAPPVERSION%&status=%ITEM_STATUS%&appID=%APP_ID%&appVersion=%APP_VERSION%&appOS=%APP_OS%&appABI=%APP_ABI%&locale=%APP_LOCALE%&currentAppVersion=%CURRENT_APP_VERSION%&updateType=%UPDATE_TYPE%&compatMode=%COMPATIBILITY_MODE%]
FF Extension: (Addons Manager) - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\523o2192.default\Extensions\cpmanager@mozillaonline.com.xpi [2022-08-09] [UpdateUrl:hxxps://addons.firefox.com.cn/chinaedition/addons/updates.json?reqVersion=%REQ_VERSION%&id=%ITEM_ID%&version=%ITEM_VERSION%&maxAppVersion=%ITEM_MAXAPPVERSION%&status=%ITEM_STATUS%&appID=%APP_ID%&appVersion=%APP_VERSION%&appOS=%APP_OS%&appABI=%APP_ABI%&locale=%APP_LOCALE%&currentAppVersion=%CURRENT_APP_VERSION%&updateType=%UPDATE_TYPE%&compatMode=%COMPATIBILITY_MODE%]
FF Extension: (TubeBuddy) - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\523o2192.default\Extensions\e389d8c2-5554-4ba2-a36e-ac7a57093130@gmail.com.xpi [2022-08-17]
FF Extension: (Enhancer for YouTubeâ„¢) - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\523o2192.default\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2022-06-20]
FF Extension: (Firefox Color) - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\523o2192.default\Extensions\FirefoxColor@mozilla.com.xpi [2021-11-25]
FF Extension: (Tags for YouTubeâ„¢) - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\523o2192.default\Extensions\jid0-cBh0nRMLV5BY1dlp33s3g7dFXLY@jetpack.xpi [2020-06-30]
FF Extension: (YouTube Plus) - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\523o2192.default\Extensions\particle@particlecore.github.io.xpi [2017-12-08]
FF Extension: (Restore Old Theme of YouTube) - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\523o2192.default\Extensions\restore.old@youtube.now.xpi [2020-06-15]
FF Extension: (uBlock Origin) - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\523o2192.default\Extensions\uBlock0@raymondhill.net.xpi [2022-08-17]
FF Extension: (YouTube Tags) - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\523o2192.default\Extensions\{9d063afe-a167-4cf3-ad71-ed1204a2339f}.xpi [2022-07-06]
FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\523o2192.default\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2022-04-19]
FF Extension: (Greasemonkey) - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\523o2192.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2021-01-29]
FF Extension: (YouTube Flash Video Player) - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\523o2192.default\Extensions\{f3bd3dd2-2888-44c5-91a2-2caeb33fb898}.xpi [2018-01-21]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-12] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-12] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-12] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> C:\Programi\VLC\npvlc.dll [2016-04-26] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-12] (Adobe Systems Incorporated -> Adobe Systems)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-08-06]

Opera:
=======
OPR Profile: C:\Users\Win7\AppData\Roaming\Opera Software\Opera Stable [2022-08-21]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Win7\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-04-23]
OPR Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\Win7\AppData\Roaming\Opera Software\Opera Stable\Extensions\hnmpcagpplmpfojmgmnngilcnanddlhb [2022-02-10]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\Win7\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-09-14]
OPR Extension: (Install Chrome Extensions) - C:\Users\Win7\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2019-12-31]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3673680 2020-05-05] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3406416 2020-05-05] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] (Giga-Byte Technology -> )
S2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.03\atkexComSvc.exe [449336 2021-01-15] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [181576 2021-09-30] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.)
R3 aswbIDSAgent; C:\Programi\Avast\aswidsagent.exe [8507448 2022-08-01] (Avast Software s.r.o. -> AVAST Software)
R2 AudioDeviceService; C:\Windows\system32\AudioDeviceService.exe [2746776 2020-01-02] (Solid State System Co., Ltd. -> SSS)
R2 avast! Antivirus; C:\Programi\Avast\AvastSvc.exe [589568 2022-08-01] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Programi\Avast\afwServ.exe [2013440 2022-08-01] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Programi\Avast\aswToolsSvc.exe [589056 2022-08-01] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Programi\Avast\wsc_proxy.exe [56912 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8906088 2021-02-25] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2021-10-13] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [593384 2021-12-07] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 FacSvc_Infestation; C:\Users\Win7\AppData\Roaming\FAC\Infestation\FacSvc.exe [473560 2020-11-28] (Fredaikis AB -> )
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [File not signed]
S3 mracsvc; C:\Windows\System32\mracsvc.exe [18953880 2019-09-21] (Mail.Ru LLC -> LLC Mail.Ru)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [9513760 2020-12-06] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
S3 PAExec; C:\Windows\PAExec.exe [189112 2017-08-17] (Power Admin LLC -> Power Admin LLC)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2017-03-19] (Even Balance, Inc. -> )
R2 SamsungMagicianSVC; C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe [360368 2022-05-04] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 SamsungRapidSvc; C:\Windows\System32\RAPID\SamsungRapidSvc.exe [30224 2019-07-04] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
S3 uncheater_bgl; C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe [2097008 2019-12-10] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.242\WsAppService.exe [495720 2018-08-29] (Wondershare Technology Co.,Ltd -> Wondershare)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 ACE-BASE; C:\Windows\system32\drivers\ACE-BASE.sys [1459384 2021-05-14] (Tencent Technology(Shenzhen) Company Limited -> ANTICHEATEXPERT.COM)
S3 ACE-GAME; C:\Windows\system32\drivers\ACE-GAME.sys [387752 2021-05-14] (Tencent Technology(Shenzhen) Company Limited -> ANTICHEATEXPERT.COM)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21584 2013-02-19] (Giga-Byte Technology -> )
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [33832 2019-04-09] (ASUSTeK Computer Inc. -> )
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [43168 2021-09-30] (ASUSTeK Computer Inc. -> )
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [41832 2022-08-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [235576 2022-08-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [389120 2022-08-01] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [258048 2022-08-01] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [104960 2022-08-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [47976 2022-08-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [275024 2022-08-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [553928 2022-08-01] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2022-06-29] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [113968 2022-08-01] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [89032 2022-08-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [859872 2022-08-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [670776 2022-08-01] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [221512 2022-08-01] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [324840 2022-08-01] (Avast Software s.r.o. -> AVAST Software)
R3 IOMap; C:\Windows\system32\drivers\IOMap64.sys [24728 2019-01-22] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 mracdrv; C:\Windows\System32\drivers\mracdrv.sys [18189864 2019-09-21] (Mail.Ru LLC -> LLC Mail.Ru)
R3 NVHDA; C:\Windows\System32\drivers\nvhda64v.sys [129960 2021-08-05] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R3 nvlddmkm; C:\Windows\System32\DRIVERS\nvlddmkm.sys [36846992 2021-08-06] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R0 SamsungRapidDiskFltr; C:\Windows\System32\DRIVERS\SamsungRapidDiskFltr.sys [309760 2019-06-13] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R0 SamsungRapidFSFltr; C:\Windows\System32\DRIVERS\SamsungRapidFSFltr.sys [120288 2019-06-13] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42064 2017-03-01] (AnchorFree Inc -> Anchorfree Inc.)
S3 tapprotonvpn; C:\Windows\System32\DRIVERS\tapprotonvpn.sys [35768 2019-12-13] (ProtonVPN AG -> The OpenVPN Project)
R3 tapwindscribe0901; C:\Windows\System32\DRIVERS\tapwindscribe0901.sys [45560 2018-07-06] (Windscribe Limited -> The OpenVPN Project)
R3 UAExt; C:\Windows\System32\DRIVERS\UAExt.sys [162832 2020-01-02] (Solid State System Co., Ltd. -> Solid State System.)
S1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [21584 2013-05-06] (Giga-Byte Technology -> )
R3 VBAudioVACMME; C:\Windows\System32\DRIVERS\vbaudio_cable64_win7.sys [41192 2014-09-02] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R3 VBAudioVMVAIOMME; C:\Windows\System32\DRIVERS\vbaudio_vmvaio64_win7.sys [41192 2018-11-18] (Vincent Burel -> Windows (R) Win 7 DDK provider)
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [59904 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
S3 XSplit_Dummy; C:\Windows\System32\drivers\xspltspk.sys [26200 2015-05-25] (Splitmedialabs Limited -> SplitmediaLabs Limited)
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
S3 GPUZ-v2; \??\C:\Users\Win7\AppData\Local\Temp\GPUZ-v2.sys [X] <==== ATTENTION
S3 Housvnlru; \??\C:\Windows\system32\Housvnlru.sys [X]
S2 MBAMChameleon; \SystemRoot\System32\Drivers\MbamChameleon.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-08-21 16:02 - 2022-08-21 16:02 - 000000000 ___HD C:\Users\Public\Documents\AdobeGC
2022-08-21 16:02 - 2019-01-22 11:19 - 000024728 _____ (ASUSTeK Computer Inc.) C:\Windows\system32\Drivers\IOMap64.sys
2022-08-19 19:56 - 2022-08-19 19:56 - 000000000 ____D C:\Users\Win7\Downloads\New folder
2022-08-17 15:39 - 2022-08-17 15:39 - 000000000 ____D C:\Users\Win7\AppData\LocalLow\PointAndClickDiscord
2022-08-16 22:31 - 2022-08-16 22:31 - 000000210 _____ C:\Users\Win7\Desktop\The Lost Dachshund.url
2022-08-10 12:47 - 2022-08-21 16:04 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2022-08-10 11:51 - 2022-08-10 11:51 - 002155622 _____ C:\Users\Win7\Desktop\Elvis Vila Corsa.plan
2022-08-07 22:26 - 2022-08-21 16:06 - 000000000 ____D C:\FRST
2022-08-01 22:43 - 2022-08-01 22:43 - 000270592 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2022-08-01 22:43 - 2022-08-01 22:43 - 000221512 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2022-07-29 10:41 - 2022-08-01 22:43 - 000041832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2022-07-29 10:41 - 2022-07-29 10:41 - 000001634 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2022-07-29 10:41 - 2022-07-29 10:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-08-21 16:04 - 2016-11-18 17:52 - 000000000 ____D C:\Users\Win7\AppData\LocalLow\Mozilla
2022-08-21 16:03 - 2022-06-27 23:46 - 000002974 _____ C:\Windows\system32\Tasks\GPU Tweak II
2022-08-21 16:02 - 2021-12-02 00:58 - 000000000 ____D C:\ProgramData\NVIDIA
2022-08-21 16:02 - 2021-12-01 00:37 - 000000000 ____D C:\Users\Win7\AppData\Roaming\Samsung Magician
2022-08-21 16:02 - 2020-10-17 00:28 - 000000000 ____D C:\ProgramData\Avast Software
2022-08-21 16:02 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-08-21 12:22 - 2020-02-07 18:06 - 000004276 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1581091594
2022-08-21 12:22 - 2019-12-16 18:19 - 000003128 _____ C:\Windows\system32\Tasks\{39EDDACF-08FF-4AA5-B603-3D0FEEA97C0D}
2022-08-21 12:22 - 2019-12-11 01:57 - 000004044 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1576022251
2022-08-21 12:22 - 2019-10-29 15:02 - 000003268 _____ C:\Windows\system32\Tasks\SamsungMagician
2022-08-21 12:22 - 2019-10-03 16:12 - 000003450 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0
2022-08-21 12:22 - 2017-07-01 07:26 - 000003256 _____ C:\Windows\system32\Tasks\{493C36DF-A38A-4CC1-B703-0A83249A546B}
2022-08-21 12:22 - 2016-03-31 22:11 - 000003234 _____ C:\Windows\system32\Tasks\{B39A65C2-648C-43E0-AD55-18EF429E9036}
2022-08-21 12:22 - 2016-03-11 14:21 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2022-08-21 10:26 - 2020-10-17 00:34 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2022-08-21 10:20 - 2009-07-14 07:13 - 000789738 _____ C:\Windows\system32\PerfStringBackup.INI
2022-08-21 10:20 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2022-08-20 15:27 - 2021-05-25 18:11 - 000000000 ____D C:\Users\Win7\AppData\Local\Avast Software
2022-08-19 22:04 - 2022-05-01 23:42 - 000000000 ____D C:\Users\Win7\Desktop\Muzika za Aliju
2022-08-17 17:55 - 2016-03-11 17:32 - 000000000 ____D C:\Users\Win7\AppData\Roaming\BitTorrent
2022-08-17 17:54 - 2022-04-27 19:27 - 000000000 ____D C:\Users\Win7\AppData\LocalLow\BitTorrent
2022-08-17 17:54 - 2021-02-09 17:26 - 000000000 ____D C:\Users\Win7\AppData\Local\BitTorrentHelper
2022-08-15 22:43 - 2016-06-28 09:54 - 000000000 ____D C:\Users\Win7\AppData\Roaming\AIMP
2022-08-12 23:43 - 2016-04-06 08:16 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2022-08-10 23:24 - 2016-04-24 16:49 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-08-10 12:00 - 2016-10-28 23:36 - 000000000 ____D C:\Users\Win7\AppData\Roaming\Chief Architect Inc
2022-08-10 11:22 - 2016-10-28 23:34 - 000000000 ___RD C:\Users\Win7\Documents\Chief Architect Premier X8 Data
2022-08-10 11:22 - 2016-10-28 23:32 - 000000000 ____D C:\Users\Win7\AppData\Local\Chief Architect Premier X8
2022-08-07 22:35 - 2020-10-12 15:27 - 000000000 ____D C:\Program Files (x86)\SpeedFan
2022-08-07 22:35 - 2020-09-30 22:47 - 000000027 _____ C:\Users\Win7\Desktop\HWiNFO64.INI
2022-08-01 22:43 - 2022-06-29 00:04 - 000553928 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2022-08-01 22:43 - 2020-10-17 00:34 - 000859872 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2022-08-01 22:43 - 2020-10-17 00:34 - 000670776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2022-08-01 22:43 - 2020-10-17 00:34 - 000389120 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2022-08-01 22:43 - 2020-10-17 00:34 - 000324840 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2022-08-01 22:43 - 2020-10-17 00:34 - 000275024 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2022-08-01 22:43 - 2020-10-17 00:34 - 000258048 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2022-08-01 22:43 - 2020-10-17 00:34 - 000235576 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2022-08-01 22:43 - 2020-10-17 00:34 - 000113968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2022-08-01 22:43 - 2020-10-17 00:34 - 000104960 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2022-08-01 22:43 - 2020-10-17 00:34 - 000089032 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2022-08-01 22:43 - 2020-10-17 00:34 - 000047976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2022-08-01 22:43 - 2020-10-17 00:34 - 000003870 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2022-07-31 15:35 - 2009-07-14 07:08 - 000032628 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2022-07-25 09:19 - 2016-05-04 22:53 - 000000386 _____ C:\Windows\Tasks\update-S-1-5-21-4024489933-1853363021-3339780435-1000.job
2022-07-25 00:17 - 2016-05-04 22:53 - 000003372 _____ C:\Windows\system32\Tasks\update-S-1-5-21-4024489933-1853363021-3339780435-1000

==================== Files in the root of some directories ========

2019-12-16 11:58 - 2019-12-18 17:40 - 000056320 _____ (SSS) C:\ProgramData\FinalDeleteFile.exe
2020-08-06 12:50 - 2020-08-06 17:57 - 000000004 _____ () C:\ProgramData\rc.dat
2017-04-28 01:56 - 2020-10-16 20:39 - 000000034 _____ () C:\Users\Win7\AppData\Roaming\AdobeWLCMCache.dat
2020-10-19 01:38 - 2020-10-19 03:02 - 000000097 _____ () C:\Users\Win7\AppData\Roaming\LauncherSettings_live.cfg
2021-07-08 17:13 - 2021-07-08 17:13 - 000000015 _____ () C:\Users\Win7\AppData\Roaming\obs-virtualcam.txt
2020-10-19 01:36 - 2020-10-19 01:36 - 000002577 _____ () C:\Users\Win7\AppData\Roaming\TheHunterSettings_live.bin
2020-10-19 01:39 - 2020-10-19 01:39 - 000000048 _____ () C:\Users\Win7\AppData\Roaming\TheHunterSettings_steam_live.cfg
2018-09-14 12:16 - 2018-09-14 12:17 - 000000025 ____H () C:\Users\Win7\AppData\Roaming\uninst48.log
2018-11-18 01:27 - 2018-12-27 22:44 - 000004592 _____ () C:\Users\Win7\AppData\Roaming\VoiceMeeterDefault.xml
2020-07-24 02:19 - 2022-04-24 19:13 - 000000081 _____ () C:\Users\Win7\AppData\Local\.bidstack.fault
2016-10-05 00:03 - 2017-10-14 00:24 - 000001456 _____ () C:\Users\Win7\AppData\Local\Adobe Save for Web 13.0 Prefs
2019-10-12 01:09 - 2019-10-12 01:09 - 000000000 ___SH () C:\Users\Win7\AppData\Local\LumaEmu
2018-09-27 18:00 - 2018-09-27 18:00 - 000000000 _____ () C:\Users\Win7\AppData\Local\oobelibMkey.log
2020-04-29 15:57 - 2020-04-29 15:57 - 000000871 _____ () C:\Users\Win7\AppData\Local\recently-used.xbel
2016-06-14 18:07 - 2020-09-29 18:30 - 000007621 _____ () C:\Users\Win7\AppData\Local\Resmon.ResmonCfg
2018-09-14 12:16 - 2018-09-14 12:17 - 000000025 ____H () C:\Users\Win7\AppData\Local\uninst37.log
2016-05-04 22:53 - 2016-05-04 22:53 - 000000003 _____ () C:\Users\Win7\AppData\Local\updater.log
2016-05-04 22:53 - 2016-05-04 23:08 - 000000059 _____ () C:\Users\Win7\AppData\Local\UserProducts.xml

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\User32.dll
[2010-11-21 05:24] - [2016-03-11 12:49] - 001008640 _____ (Microsoft Corporation) 2C353B6CE0C8D03225CAA2AF33B68D79

C:\Windows\SysWOW64\User32.dll
[2010-11-21 05:24] - [2016-03-11 12:49] - 000833024 _____ (Microsoft Corporation) 861C4346F9281DC0380DE72C8D55D6BE


LastRegBack: 2022-08-15 17:38
==================== End of FRST.txt ========================

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8616
  • Gde živiš: Novi Beograd

A sta je tacno sa registrom problem?

offline
  • Pridružio: 28 Okt 2014
  • Poruke: 162

helen1 ::A sta je tacno sa registrom problem?

Odkud znam, nisam radio sistem 4 god, na win 7 sam 64bit.
Primijetio sam da se sistem malo sporije podize, u rijetkim slucajevima ponekad se znao i sam restartovati par puta, pa valjda je za 4 god registri se izmijenio drasticno, kljucevi ostaju posle raznih deinstalacija programa i upgrejdinga...

I sta se desilo sa analizom kompa, imam li nekih virusa itd?

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8616
  • Gde živiš: Novi Beograd

1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod:

CreateRestorePoint:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-4024489933-1853363021-3339780435-1000\...\MountPoints2: F - F:\setup.exe
HKU\S-1-5-21-4024489933-1853363021-3339780435-1000\...\MountPoints2: {0ecad849-e776-11e5-a4fd-806e6f6e6963} - E:\DVDSetup.exe
HKU\S-1-5-21-4024489933-1853363021-3339780435-1000\...\MountPoints2: {16576304-0061-11ed-bc6f-94de80b82e62} - F:\AutoRun.exe
HKU\S-1-5-21-4024489933-1853363021-3339780435-1000\...\MountPoints2: {64b72f09-1147-11eb-abe8-94de80b82e62} - F:\AutoRun.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
S3 GPUZ-v2; \??\C:\Users\Win7\AppData\Local\Temp\GPUZ-v2.sys [X] <==== ATTENTION
S3 Housvnlru; \??\C:\Windows\system32\Housvnlru.sys [X]
S2 MBAMChameleon; \SystemRoot\System32\Drivers\MbamChameleon.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
AlternateDataStreams: C:\Windows\tracing:? [16]
AlternateDataStreams: C:\Users\Win7:Heroes & Generals [38]
AlternateDataStreams: C:\ProgramData\Microsoft:CMrcLkVvqeQjdzQwtilUnrhR1 [2096]
AlternateDataStreams: C:\ProgramData\Microsoft:Qrw6MfEToEfZmK13TS2URmOELgUj [2236]
AlternateDataStreams: C:\Users\Win7\Application Data:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\Win7\Application Data:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
AlternateDataStreams: C:\Users\Win7\AppData\Roaming:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\Win7\AppData\Roaming:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
AlternateDataStreams: C:\Users\Win7\AppData\Local\Temp:$DATA​ [16]
EmptyTemp:


2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt
To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt
Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi.

3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj.
Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema.



Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku.
Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a.

offline
  • Pridružio: 28 Okt 2014
  • Poruke: 162

Fix result of Farbar Recovery Scan Tool (x64) Version: 15-08-2022
Ran by Win7 (27-08-2022 00:31:28) Run:1
Running from C:\Users\Win7\Desktop
Loaded Profiles: Win7
Boot Mode: Normal
==============================================

fixlist content:
*****************
CreateRestorePoint:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-4024489933-1853363021-3339780435-1000\...\MountPoints2: F - F:\setup.exe
HKU\S-1-5-21-4024489933-1853363021-3339780435-1000\...\MountPoints2: {0ecad849-e776-11e5-a4fd-806e6f6e6963} - E:\DVDSetup.exe
HKU\S-1-5-21-4024489933-1853363021-3339780435-1000\...\MountPoints2: {16576304-0061-11ed-bc6f-94de80b82e62} - F:\AutoRun.exe
HKU\S-1-5-21-4024489933-1853363021-3339780435-1000\...\MountPoints2: {64b72f09-1147-11eb-abe8-94de80b82e62} - F:\AutoRun.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
S3 GPUZ-v2; \??\C:\Users\Win7\AppData\Local\Temp\GPUZ-v2.sys [X] <==== ATTENTION
S3 Housvnlru; \??\C:\Windows\system32\Housvnlru.sys [X]
S2 MBAMChameleon; \SystemRoot\System32\Drivers\MbamChameleon.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
AlternateDataStreams: C:\Windows\tracing:? [16]
AlternateDataStreams: C:\Users\Win7:Heroes & Generals [38]
AlternateDataStreams: C:\ProgramData\Microsoft:CMrcLkVvqeQjdzQwtilUnrhR1 [2096]
AlternateDataStreams: C:\ProgramData\Microsoft:Qrw6MfEToEfZmK13TS2URmOELgUj [2236]
AlternateDataStreams: C:\Users\Win7\Application Data:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\Win7\Application Data:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
AlternateDataStreams: C:\Users\Win7\AppData\Roaming:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\Win7\AppData\Roaming:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
AlternateDataStreams: C:\Users\Win7\AppData\Local\Temp:$DATA​ [16]
EmptyTemp:
*****************

Restore point was successfully created.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKU\S-1-5-21-4024489933-1853363021-3339780435-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F => removed successfully
HKU\S-1-5-21-4024489933-1853363021-3339780435-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0ecad849-e776-11e5-a4fd-806e6f6e6963} => removed successfully
HKU\S-1-5-21-4024489933-1853363021-3339780435-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{16576304-0061-11ed-bc6f-94de80b82e62} => removed successfully
HKU\S-1-5-21-4024489933-1853363021-3339780435-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{64b72f09-1147-11eb-abe8-94de80b82e62} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\System\CurrentControlSet\Services\gdrv => removed successfully
gdrv => service removed successfully
HKLM\System\CurrentControlSet\Services\GPUZ-v2 => removed successfully
GPUZ-v2 => service removed successfully
HKLM\System\CurrentControlSet\Services\Housvnlru => removed successfully
Housvnlru => service removed successfully
HKLM\System\CurrentControlSet\Services\MBAMChameleon => removed successfully
MBAMChameleon => service removed successfully
HKLM\System\CurrentControlSet\Services\VGPU => removed successfully
VGPU => service removed successfully
HKLM\System\CurrentControlSet\Services\xhunter1 => removed successfully
xhunter1 => service removed successfully
C:\Windows\tracing => "Confused" ADS removed successfully
C:\Users\Win7 => ":Heroes & Generals" ADS removed successfully
C:\ProgramData\Microsoft => ":CMrcLkVvqeQjdzQwtilUnrhR1" ADS removed successfully
C:\ProgramData\Microsoft => ":Qrw6MfEToEfZmK13TS2URmOELgUj" ADS removed successfully
C:\Users\Win7\Application Data => ":6699d3ee8dd9cf775caae782c8f44f03" ADS removed successfully
C:\Users\Win7\Application Data => ":fbd50e2f7662a5c33287ddc6e65ab5a1" ADS removed successfully
"C:\Users\Win7\AppData\Roaming" => ":6699d3ee8dd9cf775caae782c8f44f03" ADS not found.
"C:\Users\Win7\AppData\Roaming" => ":fbd50e2f7662a5c33287ddc6e65ab5a1" ADS not found.
C:\Users\Win7\AppData\Local\Temp => ":$DATA​" ADS removed successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 157405189 B
Java, Discord, Steam htmlcache => 898320496 B
Windows/system/drivers => 103279592 B
Edge => 0 B
Firefox => 1816158777 B
Opera => 67228526 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 17855 B
systemprofile32 => 139875 B
LocalService => 206103 B
NetworkService => 206527 B
Win7 => 2370577219 B

RecycleBin => 10260238 B
EmptyTemp: => 5.1 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 00:32:55 ====

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8616
  • Gde živiš: Novi Beograd

Da li ima nekog pomaka u brzini rada?

Ko je trenutno na forumu
 

Ukupno su 787 korisnika na forumu :: 29 registrovanih, 4 sakrivenih i 754 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: A.R.Chafee.Jr., amaterSRB, Bane san, bigfoot, Bobrock1, cuculo, dozorni, draganca, HrcAk47, krkalon, laki_bb, Leonov, Luka1998, milenko crazy north, MiroslavD, nesa1962, nikoladim, Parker, procesor, Ripanjac, shone34, sokars, Stanlio, stegonosa, stokssone, styg, x9, yrraf, |_MeD_|