Provera

Provera

offline
  • Pridružio: 24 Dec 2011
  • Poruke: 1585
  • Gde živiš: Bogatić

Hteo bih samo da proverim


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-07-2019
Ran by Admin (administrator) on ADMIN-PC (30-07-2019 14:08:06)
Running from C:\Users\Admin\Desktop
Loaded Profiles: Admin (Available Profiles: Admin & Mama i Tata & Guest)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Windows\SearchIndexer.exe
() [File not signed] C:\Windows\SearchIndexer.exe
(Abstradrome -> ) C:\Program Files (x86)\HDD Regenerator\hrsrv.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Doctor Web Ltd. -> Doctor Web, Ltd.) C:\Program Files\Common Files\Doctor Web\Scanning Engine\dwantispam.exe
(Doctor Web Ltd. -> Doctor Web, Ltd.) C:\Program Files\Common Files\Doctor Web\Scanning Engine\dwarkdaemon.exe
(Doctor Web Ltd. -> Doctor Web, Ltd.) C:\Program Files\Common Files\Doctor Web\Scanning Engine\dwengine.exe
(Doctor Web Ltd. -> Doctor Web, Ltd.) C:\Program Files\Common Files\Doctor Web\Scanning Engine\dwwatcher.exe
(Doctor Web Ltd. -> Doctor Web, Ltd.) C:\Program Files\DrWeb\dwnetfilter.exe
(Doctor Web Ltd. -> Doctor Web, Ltd.) C:\Program Files\DrWeb\dwservice.exe
(Doctor Web Ltd. -> Doctor Web, Ltd.) C:\Program Files\DrWeb\spideragent.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
(VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
(VMware, Inc. -> VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(VMware, Inc. -> VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [] => [X]
HKLM\...\Run: [New Value #2] => C:\Windows\system32\ctfmon.exe [9728 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [SpIDerAgent] => C:\Program Files\DrWeb\spideragent.exe [21662600 2019-07-30] (Doctor Web Ltd. -> Doctor Web, Ltd.)
HKLM-x32\...\Run: [NPSStartup] => [X]
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3479353938-1898474474-1349872024-1000\...\MountPoints2: {7b1e3dfc-afc9-11e4-9a26-90e6bac8619f} - H:\autorun.exe
HKU\S-1-5-21-3479353938-1898474474-1349872024-1000\...\MountPoints2: {854d0787-7b5e-11e5-9c0b-005056c00008} - H:\SETUP.EXE
HKU\S-1-5-21-3479353938-1898474474-1349872024-1000\...\Winlogon: [Shell] c:\windows\explorer.exe [3229696 2016-08-29] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\...\Drivers32: [VIDC.LAGS] => c:\windows\system32\lagarith.dll [148992 2011-12-07] ( ) [File not signed]
HKLM\...\Drivers32: [VIDC.X264] => c:\windows\system32\x264vfw64.dll [3571200 2015-02-28] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [VIDC.XVID] => c:\windows\system32\xvidvfw.dll [309248 2015-12-18] () [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => c:\windows\system32\ac3acm.acm [180736 2012-07-21] (fccHandler) [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => c:\windows\SysWOW64\ac3acm.acm [122880 2012-07-21] (fccHandler) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\75.0.3770.100\Installer\chrmstp.exe [2019-07-01] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2019-05-03] (Adobe Inc. -> Adobe Systems, Inc.)
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
GroupPolicyScripts: Restriction <==== ATTENTION
GroupPolicyScripts-x32: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {13590353-6890-4149-82CB-B189DD5569D0} - \Driver Booster SkipUAC (Admin) -> No File <==== ATTENTION
Task: {1D99CEE2-4A4D-4644-962A-FB26E7C71139} - System32\Tasks\BlueStacksHelper => D:\Programi\New folder\BlueStacks\Client\Helper\BlueStacksHelper.exe
Task: {27733630-3A7B-4442-91FA-B04D2F4ED290} - \User_Feed_Synchronization-{6301A68D-F22F-43CE-BB2C-849BAFB287F8} -> No File <==== ATTENTION
Task: {3591F61F-7535-4BEC-9478-BBC8D91B4860} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Command(1): %windir%\system32\rundll32.exe -> aepdu.dll,AePduRunUpdate -nolegacy
Task: {3591F61F-7535-4BEC-9478-BBC8D91B4860} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Command(2): %windir%\system32\rundll32.exe -> appraiser.dll,DoScheduledTelemetryRun
Task: {6FEFC098-36DD-4DA8-805E-88E93A9F8A1D} - \AviraSystemSpeedupRemoval -> No File <==== ATTENTION
Task: {72B55537-D281-4B9E-99E6-525685980799} - \Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 -> No File <==== ATTENTION
Task: {73B7011A-2CCB-485F-968E-7BD566842C2B} - \User_Feed_Synchronization-{3165F260-BE00-434B-A4B6-0AD40CB9772A} -> No File <==== ATTENTION
Task: {7C02A9B3-A0F6-45E9-AA7C-DC6EC1FE2B5B} - no filepath
Task: {80FF2623-DCB8-42C0-AA4F-E5913D9029B4} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Command(1): %windir%\system32\rundll32.exe -> aepdu.dll,AePduRunUpdate
Task: {80FF2623-DCB8-42C0-AA4F-E5913D9029B4} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Command(2): %windir%\system32\rundll32.exe -> invagent.dll,RunUpdate
Task: {836E4C60-08CC-49FC-BA6A-3785A1CA6FF0} - \Hybrid -> No File <==== ATTENTION
Task: {8BDB53DD-B080-48BB-AF32-F96470E7E3A1} - \{FA1068E8-02E9-4264-A83B-A976E45FE1B7} -> No File <==== ATTENTION
Task: {8E52CBC5-DC29-4E71-8E19-A8F80DAAF4F9} - System32\Tasks\HardDiskSentinel\Hard Disk Sentinel_Mama_20i_20Tata => D:\Programi\Hard Disk Sentinel\HDSentinel.exe [5102680 2017-03-07] (Janos Mathe -> H.D.S. Hungary) [File not signed]
Task: {93F8735A-914E-4231-A01C-CDEA4F6CC7E5} - System32\Tasks\AdobeAAMUpdater-1.0-Admin-PC-Admin => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-28] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {955FADCC-1E1E-4DB4-AB82-EF338F122027} - no filepath
Task: {A3CBEB4D-BECB-4443-8F15-1C3FB82D0F23} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {A4218634-B86E-4867-AB3B-28E87C35D87A} - \Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 -> No File <==== ATTENTION
Task: {B86F1928-1FB8-4796-8B9C-B023E4AAA07B} - no filepath
Task: {BBC1A0BC-50DF-4840-A0CD-1160A2EE23FC} - System32\Tasks\HardDiskSentinel\Hard Disk Sentinel_Admin => D:\Programi\Hard Disk Sentinel\HDSentinel.exe [5102680 2017-03-07] (Janos Mathe -> H.D.S. Hungary) [File not signed]
Task: {BC2761C5-A29E-452F-9DA5-7DF33FEEE268} - System32\Tasks\AdwCleaner_onReboot => C:\Users\Mama i Tata\Desktop\AdwCleaner.exe
Task: {BFCDBDA1-4CC8-4C49-BC2A-93DDA59106D2} - no filepath
Task: {C0049838-D341-4A30-A040-009F27D39B88} - \{F0C9727F-0BCB-4F95-973D-1C050FAAB15E} -> No File <==== ATTENTION
Task: {C47A3A7F-B9C7-4AEB-841E-D8131B05AAEB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-11-01] (Google Inc -> Google Inc.)
Task: {D1ACE08B-589E-4270-AB41-337ED5A1FD9D} - no filepath
Task: {D6B3885E-F3B7-4CAE-A2A2-2677F8DEFBFA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-11-01] (Google Inc -> Google Inc.)
Task: {D76932D4-1380-4235-A63B-C01FDB297ABE} - no filepath
Task: {EBBEC246-6DCE-4765-918B-834189FB437F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [271960 2017-03-22] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {F027DA41-898C-489F-A085-BC923CBE23DB} - System32\Tasks\Doctor Web\Dr.Web Daily scan => C:\Program Files\DrWeb\dwscanner.exe [11966856 2019-07-30] (Doctor Web Ltd. -> Doctor Web, Ltd.)
Task: {F37283DA-C2EC-4193-B29E-23C7A6684B61} - System32\Tasks\Opera scheduled Autoupdate 1564438958 => C:\Users\Admin\AppData\Local\Programs\Opera\launcher.exe [1519640 2019-07-24] (Opera Software AS -> Opera Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\EPSON L382 Series Update {BA06CFC4-4F86-4019-98FF-411683CFBBE7}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSRRE.EXE:/EXE:{BA06CFC4-4F86-4019-98FF-411683CFBBE7} /F:UpdateSYSTEMĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5BCC3B9E-12D3-42FF-9753-BDE742910631}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{5BCC3B9E-12D3-42FF-9753-BDE742910631}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-3479353938-1898474474-1349872024-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://us.yahoo.com/?fr=fp-comodo&type=82_25050004005_65.0.2.15_i_hp
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3479353938-1898474474-1349872024-1000 -> DefaultScope {0AA24E16-07B3-4694-8357-3C21ACC5F516} URL = hxxps://us.search.yahoo.com/yhs/search?hspart=comodo&hsimp=yhs-com_chrome&type=82_25050004005_65.0.2.15_i_ds&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3479353938-1898474474-1349872024-1000 -> {0AA24E16-07B3-4694-8357-3C21ACC5F516} URL = hxxps://us.search.yahoo.com/yhs/search?hspart=comodo&hsimp=yhs-com_chrome&type=82_25050004005_65.0.2.15_i_ds&p={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-01-22] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-01-25] (Oracle America, Inc. -> Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-25] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-01-22] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-04-07] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-04-07] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM - No Name - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - No File
Toolbar: HKLM-x32 - No Name - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - No File

FireFox:
========
FF DefaultProfile: hi68yl9v.default
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\hi68yl9v.default [2019-07-29]
FF Extension: (Greasemonkey) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\hi68yl9v.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2019-04-15]
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\hzfw1kh0.default [2019-07-29]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 => not found
FF HKU\S-1-5-21-3479353938-1898474474-1349872024-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_228.dll [2015-10-20] (Adobe Systems Incorporated -> )
FF Plugin: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-29] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_228.dll [2015-10-20] (Adobe Systems Incorporated -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1223183.dll [2015-12-22] (Adobe Systems, Inc.) [File not signed]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google Inc -> Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-04-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-04-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-01-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-04] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-04] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-17] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-17] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-29] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin HKU\S-1-5-21-3479353938-1898474474-1349872024-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [No File]

Chrome:
=======
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/yhs/search?p={searchTerms}&hspart=comodo&hsimp=yhs-ccs&type=default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2019-07-30]
CHR Extension: (Slides) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-16]
CHR Extension: (Docs) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-16]
CHR Extension: (Google Drive) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-04]
CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-04]
CHR Extension: (Adblock for Youtube™) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2019-03-25]
CHR Extension: (Google Search) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-04]
CHR Extension: (Sheets) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-16]
CHR Extension: (Google Docs Offline) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-16]
CHR Extension: (AdBlock) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-07-08]
CHR Extension: (Yahoo Partner) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcjjaajflhellmcfcecojihhmdbjmmlm [2019-07-30]
CHR Extension: (Avira SafeSearch Plus) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp [2019-07-30]
CHR Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2019-07-04]
CHR Extension: (Save to Pocket) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2019-07-25]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-24]
CHR Extension: (Evernote Web Clipper) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc [2019-07-04]
CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-03]
CHR Extension: (Chrome Media Router) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-07-04]
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-07-26]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3479353938-1898474474-1349872024-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hcjjaajflhellmcfcecojihhmdbjmmlm] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [dhhejlifdlcgcmogbggeomfodgklfaem] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fabcmochhfpldjekobfaaggijgohadih] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 Crypkey License; c:\windows\system32\crypserv.exe [122880 2008-05-08] (CrypKey (Canada) Ltd.) [File not signed]
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4132456 2019-02-20] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 DrWebAVService; C:\Program Files\DrWeb\dwservice.exe [13816296 2019-07-30] (Doctor Web Ltd. -> Doctor Web, Ltd.)
R3 DrWebEngine; C:\Program Files\Common Files\Doctor Web\Scanning Engine\dwengine.exe [2224600 2019-07-29] (Doctor Web Ltd. -> Doctor Web, Ltd.)
R3 DrWebNetFilter; C:\Program Files\DrWeb\dwnetfilter.exe [6970192 2019-07-30] (Doctor Web Ltd. -> Doctor Web, Ltd.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [145224 2016-04-18] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 EPSON_PM_RPCV4_06; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE [152640 2013-04-15] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
R2 hddrsrv; C:\Program Files (x86)\HDD Regenerator\hrsrv.exe [82144 2013-05-08] (Abstradrome -> )
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2015-11-07] (Even Balance, Inc. -> )
S4 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2015-05-21] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe [134656 2015-07-09] (Microsoft Corporation) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 Windows Indexer; C:\Windows\SearchIndexer.exe [64512 2017-02-23] () [File not signed]
S3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [X]
S2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [X]
S2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [X]
S2 Mobizen plugin; C:\Program Files (x86)\RSUPPORT\MobizenService\MobizenService.exe [X]
S2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [X]
S2 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 8D335D8E; C:\Windows\System32\drivers\8D335D8E.sys [478392 2015-11-25] (Kaspersky Lab -> Kaspersky Lab ZAO)
S3 aftap0901; C:\Windows\System32\DRIVERS\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R0 DrWebLwf; C:\Windows\System32\drivers\drweblwf.sys [437984 2019-07-30] (Doctor Web Ltd. -> Doctor Web, Ltd.)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [42256 2019-02-20] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [59360 2019-02-20] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R0 DwDevGuard; C:\Windows\System32\drivers\dwdg.sys [241264 2019-07-30] (Doctor Web Ltd. -> Doctor Web, Ltd.)
R0 DwProt; C:\Windows\System32\drivers\dwprot.sys [653120 2019-07-30] (Doctor Web Ltd. -> Doctor Web, Ltd.)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [24056 2016-01-14] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed]
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [10848 2016-07-11] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed]
S3 GemCCID; C:\Windows\System32\Drivers\GemCCID.sys [130944 2014-11-10] (Microsoft Windows Hardware Compatibility Publisher -> Gemalto)
S3 HTCAND64; C:\Windows\System32\Drivers\ANDROIDUSB.sys [33736 2009-11-02] (3am.com(Test) -> HTC, Corporation)
S3 HtcVCom32; C:\Windows\System32\DRIVERS\HtcVComV64.sys [121800 2010-03-08] (Sqa.com(Test) -> QUALCOMM Incorporated)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-04-06] (Martin Malik - REALiX -> REALiX(tm))
S3 keycrypt; C:\Windows\System32\DRIVERS\KeyCrypt64.sys [143904 2015-11-05] (Zemana Ltd. -> Zemana Ltd.)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 NetworkX; C:\Windows\system32\ckldrv.sys [28664 2008-03-17] (CrypKey (Canada) Inc. -> )
R3 RTL8167; C:\Windows\System32\DRIVERS\Rt64win7.sys [187392 2009-03-02] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Corporation )
R0 SpiderG3; C:\Windows\System32\drivers\spiderg3.sys [331096 2019-07-30] (Doctor Web Ltd. -> Doctor Web, Ltd.)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [36168 2019-04-12] (McAfee, Inc. -> The OpenVPN Project)
R3 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [213080 2018-05-09] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\System32\DRIVERS\VBoxNetLwf.sys [222864 2018-05-09] (Oracle Corporation -> Oracle Corporation)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [137920 2017-03-15] (Oracle Corporation -> Oracle Corporation)
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [1207808 2009-06-03] (Microsoft Windows Hardware Compatibility Publisher -> VIA Technologies, Inc.)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [93248 2016-09-30] (VMware, Inc. -> VMware, Inc.)
S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [159936 2016-08-16] (NGO -> MBB)
S3 AndnetBus; system32\DRIVERS\lgandnetbus64.sys [X]
S3 AndNetDiag; system32\DRIVERS\lgandnetdiag64.sys [X]
S3 ANDNetModem; system32\DRIVERS\lgandnetmodem64.sys [X]
U3 aswbdisk; no ImagePath
S3 b06bdrv; \SystemRoot\system32\drivers\bxvbda.sys [X]
S0 ignis; system32\DRIVERS\ignis.sys [X]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
S1 ZAM; \??\C:\Windows\System32\drivers\zam64.sys [X]
S1 ZAM_Guard; \??\C:\Windows\System32\drivers\zamguard64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-07-30 14:08 - 2019-07-30 14:09 - 000030119 _____ C:\Users\Admin\Desktop\FRST.txt
2019-07-30 01:41 - 2019-07-30 01:41 - 000000000 ____D C:\ProgramData\Shared Space
2019-07-30 00:45 - 2019-07-30 01:45 - 000000000 ____D C:\ProgramData\Comodo
2019-07-30 00:45 - 2019-07-30 00:45 - 000000000 ____D C:\ProgramData\boost_interprocess
2019-07-30 00:39 - 2019-07-30 01:45 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Comodo
2019-07-30 00:39 - 2019-07-30 01:45 - 000000000 ____D C:\Users\Admin\AppData\Local\Comodo
2019-07-30 00:39 - 2019-07-30 01:45 - 000000000 ____D C:\Program Files\Comodo
2019-07-30 00:39 - 2019-07-30 01:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2019-07-30 00:39 - 2019-07-30 01:34 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\Comodo
2019-07-30 00:38 - 2019-07-30 00:38 - 001060864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71.dll
2019-07-30 00:22 - 2019-07-30 00:22 - 000004058 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1564438958
2019-07-30 00:22 - 2019-07-30 00:22 - 000001320 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera Browser.lnk
2019-07-30 00:07 - 2019-07-30 00:17 - 000000000 ____D C:\FRST
2019-07-30 00:06 - 2019-07-30 00:06 - 002096128 _____ (Farbar) C:\Users\Admin\Desktop\FRST64.exe
2019-07-30 00:05 - 2019-07-30 00:05 - 000000000 ____D C:\Windows\System32\Tasks\Doctor Web
2019-07-30 00:01 - 2019-07-30 00:01 - 000653120 _____ (Doctor Web, Ltd.) C:\Windows\system32\Drivers\dwprot.sys
2019-07-30 00:01 - 2019-07-30 00:01 - 000437984 _____ (Doctor Web, Ltd.) C:\Windows\system32\Drivers\drweblwf.sys
2019-07-30 00:01 - 2019-07-30 00:01 - 000331096 _____ (Doctor Web, Ltd.) C:\Windows\system32\Drivers\spiderg3.sys
2019-07-30 00:01 - 2019-07-30 00:01 - 000314888 _____ (Doctor Web, Ltd.) C:\Windows\system32\Drivers\dwsguard64.dll
2019-07-30 00:01 - 2019-07-30 00:01 - 000269168 _____ (Doctor Web, Ltd.) C:\Windows\system32\Drivers\dwsguard32.dll
2019-07-30 00:01 - 2019-07-30 00:01 - 000241264 _____ (Doctor Web, Ltd.) C:\Windows\system32\Drivers\dwdg.sys
2019-07-30 00:01 - 2019-07-30 00:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dr.Web
2019-07-29 23:59 - 2019-07-29 23:59 - 000000000 ____D C:\Program Files\Common Files\Doctor Web
2019-07-29 23:58 - 2019-07-30 00:04 - 000000000 ____D C:\Program Files\DrWeb
2019-07-29 21:16 - 2019-07-29 21:19 - 000223780 _____ C:\TDSSKiller.3.1.0.28_29.07.2019_21.16.57_log.txt
2019-07-29 20:50 - 2019-07-29 23:48 - 000000000 ____D C:\Program Files (x86)\Zemana AntiLogger Free
2019-07-29 20:50 - 2019-07-29 20:50 - 000000000 ____D C:\Users\Admin\AppData\Local\AntiLogger Free
2019-07-29 20:50 - 2015-11-05 15:00 - 000143904 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\KeyCrypt64.sys
2019-07-29 20:34 - 2019-07-29 20:34 - 000000000 ____D C:\Users\Admin\AppData\Local\mbam
2019-07-29 20:33 - 2019-07-29 20:33 - 000000000 ____D C:\Users\Admin\AppData\Local\mbamtray
2019-07-28 23:58 - 2019-07-28 23:59 - 000001063 _____ C:\inshut3log.txt
2019-07-28 22:31 - 2019-07-28 22:32 - 000000000 ____D C:\Users\Admin\Desktop\Javne
2019-07-28 22:22 - 2019-07-28 22:27 - 000000000 ____D C:\Users\Admin\Desktop\Upravljacko
2019-07-26 00:12 - 2019-07-26 00:16 - 000000000 ____D C:\ProgramData\AVAST Software
2019-07-25 20:45 - 2019-07-25 20:45 - 000000000 ____D C:\Program Files\Defraggler
2019-07-23 21:45 - 2019-07-23 21:45 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Kodi
2019-07-23 21:24 - 2019-07-26 15:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kodi
2019-07-23 21:24 - 2019-07-23 21:45 - 000001874 _____ C:\Users\Admin\Desktop\Kodi.lnk
2019-07-11 21:55 - 2019-07-11 21:55 - 000000000 ____D C:\Users\Admin\AppData\Local\Viber
2019-07-11 18:31 - 2019-07-11 18:31 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Google
2019-07-10 20:16 - 2019-07-10 20:16 - 000001011 _____ C:\Users\Public\Desktop\KZOČitač.lnk
2019-07-10 20:16 - 2019-07-10 20:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KZOČitač
2019-07-10 20:16 - 2019-07-10 20:16 - 000000000 ____D C:\Program Files\RFZO
2019-07-08 00:48 - 2019-07-08 00:48 - 000118913 _____ C:\Users\Mama i Tata\Desktop\shell.pdf
2019-07-07 23:26 - 2019-07-08 22:41 - 000000000 ____D C:\Users\Mama i Tata\Desktop\IZVESTAJI ZA KRAJ 2019
2019-07-03 23:42 - 2019-07-04 00:00 - 000019726 _____ C:\Users\Mama i Tata\Desktop\SPISAK ZAPOSLENIH - VOJKA.xlsx
2019-07-03 22:37 - 2019-07-03 23:41 - 000019611 _____ C:\Users\Mama i Tata\Desktop\SPISAK UČENIKA III-3 TESTOVI - Copy.xlsx
2019-07-03 21:59 - 2019-07-04 00:49 - 000000000 ____D C:\Users\Mama i Tata\Desktop\IZVESTAJI

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-07-30 14:04 - 2018-12-31 15:24 - 000000000 ____D C:\ProgramData\NVIDIA
2019-07-30 14:04 - 2015-10-22 17:31 - 000000000 ____D C:\ProgramData\VMware
2019-07-30 14:04 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-07-30 03:07 - 2009-07-14 06:45 - 000026544 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-07-30 03:07 - 2009-07-14 06:45 - 000026544 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-07-30 02:29 - 2015-02-18 10:57 - 000000000 ____D C:\Users\Mama i Tata
2019-07-30 02:18 - 2015-08-18 20:11 - 000000000 ____D C:\Users\Mama i Tata\AppData\Roaming\uTorrent
2019-07-30 02:17 - 2019-06-04 21:20 - 000000000 ____D C:\Users\Mama i Tata\AppData\Local\BitTorrentHelper
2019-07-30 02:16 - 2015-02-08 12:00 - 000000000 ____D C:\ProgramData\MCShield
2019-07-30 02:14 - 2019-05-30 17:27 - 000003096 _____ C:\Windows\System32\Tasks\AdwCleaner_onReboot
2019-07-30 02:05 - 2019-01-01 03:26 - 000000000 ____D C:\ProgramData\Avira
2019-07-30 02:05 - 2019-01-01 03:26 - 000000000 ____D C:\Program Files (x86)\Avira
2019-07-30 02:05 - 2015-02-09 08:28 - 000000000 ____D C:\ProgramData\Package Cache
2019-07-30 00:03 - 2018-04-25 01:03 - 000000000 ____D C:\ProgramData\Doctor Web
2019-07-29 23:59 - 2017-02-22 17:51 - 000000000 ____D C:\Program Files\Common Files\AV
2019-07-29 23:48 - 2015-02-08 12:01 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-07-29 23:44 - 2018-06-04 14:33 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\uTorrent
2019-07-29 23:44 - 2015-02-08 12:01 - 000000000 ____D C:\Users\Admin\AppData\Roaming\uTorrent
2019-07-29 23:42 - 2019-03-25 17:25 - 000000000 ____D C:\Users\Admin\AppData\Local\BitTorrentHelper
2019-07-29 23:41 - 2015-06-02 23:13 - 000000000 ____D C:\Windows\Minidump
2019-07-29 23:41 - 2015-02-08 11:39 - 000306639 ____N C:\Windows\Minidump\072919-31028-01.dmp
2019-07-29 21:45 - 2015-02-08 11:49 - 000000000 ____D C:\Users\Admin
2019-07-26 00:32 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2019-07-26 00:29 - 2019-06-14 21:22 - 000000000 ____D C:\Users\Admin\AppData\Roaming\MPC-HC
2019-07-26 00:29 - 2015-02-08 22:13 - 000000000 ____D C:\Users\Admin\AppData\Roaming\DAEMON Tools Lite
2019-07-26 00:27 - 2018-12-30 18:13 - 000000000 ____D C:\Users\Admin\AppData\Local\CrashDumps
2019-07-25 21:42 - 2019-03-18 12:12 - 000000000 ____D C:\Users\Admin\AppData\Roaming\ViberPC
2019-07-23 21:24 - 2019-05-03 22:19 - 000000000 ____D C:\Program Files\Kodi
2019-07-11 21:54 - 2019-03-18 11:28 - 000000000 ____D C:\Users\Admin\Documents\ViberDownloads
2019-07-11 20:24 - 2009-07-14 07:13 - 000790154 _____ C:\Windows\system32\PerfStringBackup.INI
2019-07-10 22:26 - 2015-02-12 09:20 - 000000000 ____D C:\Users\Admin\AppData\Local\ElevatedDiagnostics
2019-07-10 20:16 - 2017-01-25 00:43 - 000000000 ____D C:\Program Files\NetSeT
2019-07-10 20:02 - 2017-01-25 01:11 - 000000000 ____D C:\Program Files\MUP RS
2019-07-10 20:02 - 2017-01-25 00:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetSeT
2019-07-07 23:16 - 2019-05-05 19:09 - 000000000 ____D C:\Users\Mama i Tata\Desktop\Vojka
2019-07-01 23:53 - 2015-02-10 08:42 - 000000000 ____D C:\Users\Mama i Tata\Desktop\Slavica
2019-07-01 21:37 - 2015-11-01 19:12 - 000002226 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

==================== Files in the root of some directories ================

2017-02-23 12:22 - 2017-02-23 12:22 - 000000001 _____ () C:\Users\Admin\AppData\Local\llftool.4.40.agreement
2018-06-09 23:04 - 2018-06-09 23:04 - 000000019 _____ () C:\Users\Admin\AppData\Local\llftool.license
2017-01-24 23:25 - 2017-01-24 23:25 - 000007605 _____ () C:\Users\Admin\AppData\Local\Resmon.ResmonCfg

==================== FLock ================

2015-02-08 11:40 C:\Windows\CSC

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2018-04-18 12:18
==================== End of FRST.txt ============================


https://www.mycity.rs/must-login.png

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10459
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Ne vidim ništa sporno u izvještajima.

offline
  • Pridružio: 24 Dec 2011
  • Poruke: 1585
  • Gde živiš: Bogatić

Ok. Hvala puno.

Ko je trenutno na forumu
 

Ukupno su 626 korisnika na forumu :: 36 registrovanih, 5 sakrivenih i 585 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 2967 - dana 31 Okt 2019 06:37

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: aleksmajstor, alkatraz080, bato, bigbear2, brufen2, Cobi026, darkangel, darkstar101, Djokkinen, Gama, girici3, Hektor2, ivica976, kljift, Kožedub, Kubovac, lacko, Lieutenant, louderick, Marko Marković, miljannis, Miskohd, moonshine, Pavlov A.A., plavii, r77adder, Rakenica, ruseskij, ssekir75, USSVoyager, vasa.93, vathra, Velibor Rado, voja64, zixmix, 1872