Provjera Kompjutera za druga

Provjera Kompjutera za druga

offline
  • pr1Ze
  • Pridružio: 20 Apr 2012
  • Poruke: 1632

Zdravo htio bih da provjerim drugu komp da li ima virusa
Evo izvjestaja
I unaprijed hvala ko bude radio Ziveli

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-03-2020
Ran by Cira (administrator) on CIRA-PC (31-03-2020 05:55:00)
Running from C:\Users\Cira\Desktop
Loaded Profiles: Cira (Available Profiles: Cira)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files\qBittorrent\qbittorrent.exe
(Advanced Micro Devices) [File not signed] C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\dfsvc.exe
(Popcorn Time) [File not signed] C:\Program Files (x86)\Popcorn Time\Updater.exe
(Reimage LTD. -> Reimage) C:\Program Files\Reimage\Reimage Protector\ReiSystem.exe
(Reimage LTD. -> Reimage®) C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Desktop.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(VIA Technologies Inc. -> VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5021296 2011-12-06] (VIA Technologies Inc. -> VIA)
HKU\S-1-5-21-80324633-4199140890-3120404731-1000\...\MountPoints2: {5eb16cc4-c15d-11e6-9dc8-7824af32dc5d} - F:\setup.exe
HKU\S-1-5-21-80324633-4199140890-3120404731-1000\...\MountPoints2: {76fcbb26-d1b9-11e6-98c9-7824af32dc5d} - F:\autorun.exe
HKU\S-1-5-21-80324633-4199140890-3120404731-1000\...\MountPoints2: {b30b4541-c68e-11e5-a5e7-7824af32dc5d} - E:\setup.EXE /AUTORUN
HKU\S-1-5-21-80324633-4199140890-3120404731-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [11264 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.149\Installer\chrmstp.exe [2020-03-20] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {02904B78-0B90-4C85-98A4-F6C5AEAA4E9A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-03-12] (Adobe Inc. -> Adobe)
Task: {4D5437C6-A84A-4AA4-8141-3F6EB5CD65D9} - System32\Tasks\Reimage Reminder => C:\Program Files\Reimage\Reimage Repair\ReimageReminder.exe <==== ATTENTION
Task: {7FC1DE80-9342-4650-8148-453ECD14465F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-05-17] (Google Inc -> Google Inc.)
Task: {886105C9-E7C3-4D0C-B33A-9B85D5F09522} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-05-17] (Google Inc -> Google Inc.)
Task: {A8797AB4-EC49-47BC-A391-44982F96EAD1} - System32\Tasks\{830E0F3F-4AE3-4F02-8CE1-8EA7E1663CB9} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.23.0.105&LastError=404
Task: {BFFD9900-D17F-4200-A55B-76CCB059F026} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_344_pepper.exe [1453624 2020-03-12] (Adobe Inc. -> Adobe)
Task: {C912C185-7E84-4193-A0BC-0D6AB5384F2C} - System32\Tasks\ReimageUpdater => C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [9073504 2020-02-19] (Reimage LTD. -> Reimage®) <==== ATTENTION
Task: {D600C463-020F-414B-8C9C-734FA7E4F1AA} - System32\Tasks\ASC9_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
Task: {ED1AE24A-C5D2-4B3E-AC78-4FA91E692A18} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [52104 2016-12-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {FE1B7E04-B438-45B3-8C5E-1CA79ADDF821} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_344_Plugin.exe [1458232 2020-03-12] (Adobe Inc. -> Adobe)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{55576F2C-8B98-40BA-BBDD-DC4E36F7ED73}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-80324633-4199140890-3120404731-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/en-xl/?ocid=iehp
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: Advanced SystemCare Surfing Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL => No File
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2017-05-05] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2017-05-05] (Microsoft Windows -> Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2017-05-05] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2017-05-05] (Microsoft Windows -> Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Cira\AppData\Roaming\Mozilla\Firefox\Profiles\T2xQ4ufY.default [2020-03-30]
FF Extension: (Avira Browser Safety) - C:\Users\Cira\AppData\Roaming\Mozilla\Firefox\Profiles\T2xQ4ufY.default\Extensions\abs@avira.com [2015-12-27] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_344.dll [2020-03-12] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_344.dll [2020-03-12] (Adobe Inc. -> )

Chrome:
=======
CHR Profile: C:\Users\Cira\AppData\Local\Google\Chrome\User Data\Default [2020-03-31]
CHR HomePage: Default -> msn.com
CHR StartupUrls: Default -> "hxxp://www.google.rs/"
CHR DefaultSearchURL: Default -> hxxp://www.bing.com/search?FORM=__PARAM__DF&PC=__PARAM__&q={searchTerms}
CHR DefaultSearchKeyword: Default -> bing.com
CHR DefaultSuggestURL: Default -> hxxp://www.bing.com/osjson.aspx?FORM=__PARAM__DF&PC=__PARAM__&query={searchTerms}
CHR Extension: (Slides) - C:\Users\Cira\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-09]
CHR Extension: (Docs) - C:\Users\Cira\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-09]
CHR Extension: (Google Drive) - C:\Users\Cira\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-12-24]
CHR Extension: (YouTube) - C:\Users\Cira\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-05-17]
CHR Extension: (Sheets) - C:\Users\Cira\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-09]
CHR Extension: (Google Docs Offline) - C:\Users\Cira\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-03-12]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\Cira\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-03-31]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Cira\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-17]
CHR Extension: (Gmail) - C:\Users\Cira\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30]
CHR Extension: (Chrome Media Router) - C:\Users\Cira\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-03-20]
CHR Profile: C:\Users\Cira\AppData\Local\Google\Chrome\User Data\System Profile [2018-05-24]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKU\S-1-5-21-80324633-4199140890-3120404731-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [290184 2016-12-23] (Advanced Micro Devices, Inc. -> AMD)
R2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [121856 2016-12-23] (Advanced Micro Devices) [File not signed]
S3 PAExec; C:\Windows\PAExec.exe [189112 2017-01-27] (Power Admin LLC -> Power Admin LLC)
R2 ReimageRealTimeProtector; C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [9073504 2020-02-19] (Reimage LTD. -> Reimage®)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13172752 2020-01-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2018-04-06] (Popcorn Time) [File not signed]
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-11-11] (VIA Technologies Inc. -> VIA Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2017-05-04] (Microsoft Windows -> Microsoft Corporation)
S2 AdvancedSystemCareService9; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [X]
S3 wampapache64; "c:\wamp64\bin\apache\apache2.4.33\bin\httpd.exe" -k runservice [X]
S3 wampmariadb64; c:\wamp64\bin\mariadb\mariadb10.2.14\bin\mysqld.exe wampmariadb64 [X]
S3 wampmysqld64; c:\wamp64\bin\mysql\mysql5.7.21\bin\mysqld.exe wampmysqld64 [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 amdacpksd; C:\Windows\system32\drivers\amdacpksd.sys [305544 2016-12-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [28725640 2016-12-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [521608 2016-12-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 asmthub3; C:\Windows\System32\DRIVERS\asmthub3.sys [138568 2012-08-20] (MCCI Corporation -> ASMedia Technology Inc)
S3 asmtxhci; C:\Windows\System32\DRIVERS\asmtxhci.sys [416072 2012-08-20] (MCCI Corporation -> ASMedia Technology Inc)
R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW76.sys [96256 2016-03-30] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-11-18] (Martin Malik - REALiX -> REALiX(tm))
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2016-10-24] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
S3 tap-tb-0901; C:\Windows\System32\DRIVERS\tap-tb-0901.sys [38656 2016-10-17] (TunnelBear, Inc. -> The OpenVPN Project)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [2182768 2011-11-11] (VIA Technologies Inc. -> VIA Technologies, Inc.)
S2 AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [X]
S3 cpuz134; \??\C:\Users\Cira\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X] <==== ATTENTION
S3 FXDrv32; \??\D:\FXDrv64.sys [X]
S0 MBAMSwissArmy; system32\drivers\MBAMSwissArmy.sys [X]
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-03-31 05:55 - 2020-03-31 05:56 - 000014973 _____ C:\Users\Cira\Desktop\FRST.txt
2020-03-31 05:54 - 2020-03-31 05:55 - 000000000 ____D C:\FRST
2020-03-31 05:54 - 2020-03-31 05:54 - 002280448 _____ (Farbar) C:\Users\Cira\Desktop\FRST64.exe
2020-03-31 05:51 - 2020-03-31 05:51 - 000001149 _____ C:\ProgramData\Microsoft\Windows\Start Menu\BS.Player PRO.lnk
2020-03-31 05:51 - 2020-03-31 05:51 - 000001143 _____ C:\Users\Public\Desktop\BS.Player PRO.lnk
2020-03-31 05:51 - 2020-03-31 05:51 - 000001143 _____ C:\ProgramData\Desktop\BS.Player PRO.lnk
2020-03-31 05:51 - 2020-03-31 05:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Webteh
2020-03-31 05:50 - 2020-03-31 05:52 - 000000000 ____D C:\Users\Cira\AppData\Roaming\BSplayer PRO
2020-03-31 05:50 - 2020-03-31 05:50 - 000000000 ____D C:\Program Files (x86)\Webteh
2020-03-31 05:47 - 2020-03-31 05:47 - 000033914 ____H C:\Users\Cira\Downloads\.8d5ba6c44d3a3c07b7a64d8f27ab6b4665187b2c.parts
2020-03-31 05:47 - 2020-03-31 05:47 - 000000000 ____D C:\Users\Cira\Downloads\Vikings S04 Season 4 Complete HDTV XviD-AFG
2020-03-31 05:05 - 2020-03-31 05:05 - 000000000 ____D C:\Windows\LastGood
2020-03-31 05:05 - 2012-02-03 15:01 - 000107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2020-03-31 05:05 - 2012-02-03 15:01 - 000074344 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2020-03-31 05:02 - 2020-03-31 05:02 - 000000000 ____D C:\Users\Cira\Desktop\Realtek_LanXPVistaWin7_VER5792_VER6250_VER752
2020-03-31 04:46 - 2020-03-31 04:46 - 000000000 ____D C:\Users\Cira\AppData\Local\ElevatedDiagnostics
2020-03-31 04:27 - 2020-03-31 04:27 - 000001077 _____ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
2020-03-31 04:27 - 2020-03-31 04:27 - 000001077 _____ C:\ProgramData\Desktop\Revo Uninstaller Pro.lnk
2020-03-31 04:27 - 2020-03-31 04:27 - 000000000 ____D C:\Users\Cira\AppData\Local\VS Revo Group
2020-03-31 04:27 - 2020-03-31 04:27 - 000000000 ____D C:\ProgramData\VS Revo Group
2020-03-31 04:27 - 2020-03-31 04:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2020-03-31 04:27 - 2020-03-31 04:27 - 000000000 ____D C:\Program Files\VS Revo Group
2020-03-31 04:27 - 2016-12-21 14:52 - 000040240 _____ (VS Revo Group) C:\Windows\system32\Drivers\revoflt.sys
2020-03-31 04:25 - 2020-03-31 05:47 - 000000000 ____D C:\Users\Cira\AppData\Roaming\qBittorrent
2020-03-31 04:25 - 2020-03-31 04:25 - 000000848 _____ C:\Users\Public\Desktop\qBittorrent.lnk
2020-03-31 04:25 - 2020-03-31 04:25 - 000000848 _____ C:\ProgramData\Desktop\qBittorrent.lnk
2020-03-31 04:25 - 2020-03-31 04:25 - 000000000 ____D C:\Users\Cira\AppData\Local\qBittorrent
2020-03-31 04:25 - 2020-03-31 04:25 - 000000000 ____D C:\Program Files\qBittorrent
2020-03-31 04:18 - 2020-03-31 04:18 - 000000930 _____ C:\Users\Public\Desktop\CPUID HWMonitor.lnk
2020-03-31 04:18 - 2020-03-31 04:18 - 000000930 _____ C:\ProgramData\Desktop\CPUID HWMonitor.lnk
2020-03-31 04:10 - 2020-03-31 04:10 - 000000000 ____D C:\Windows\pss
2020-03-31 04:09 - 2020-03-31 04:09 - 000000000 ____D C:\Users\Cira\AppData\Local\TeamViewer
2020-03-31 04:08 - 2020-03-31 04:08 - 000000971 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk
2020-03-03 17:28 - 2020-03-03 17:28 - 000276016 _____ C:\Windows\Minidump\030320-21918-01.dmp

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-03-31 05:50 - 2015-07-27 18:21 - 000000000 ____D C:\Users\Cira\AppData\Local\Deployment
2020-03-31 05:48 - 2018-05-17 22:57 - 000000000 ____D C:\Program Files (x86)\Notepad++
2020-03-31 05:46 - 2015-10-17 01:09 - 000000000 ____D C:\Users\Cira\AppData\Roaming\OBS
2020-03-31 05:30 - 2019-11-03 22:59 - 000000000 ____D C:\Users\Cira\AppData\Local\Riot Games
2020-03-31 05:30 - 2015-09-20 19:28 - 000000000 ____D C:\Riot Games
2020-03-31 05:26 - 2016-03-08 22:34 - 000000000 ____D C:\ProgramData\Apple Computer
2020-03-31 05:26 - 2015-07-27 20:31 - 000000000 ____D C:\Users\Cira\AppData\Roaming\Apple Computer
2020-03-31 05:15 - 2019-02-11 13:54 - 000000000 ____D C:\Program Files (x86)\Webex
2020-03-31 05:07 - 2015-07-27 19:40 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-03-31 05:07 - 2015-07-27 18:59 - 000000000 ____D C:\Program Files (x86)\Steam
2020-03-31 05:06 - 2009-07-14 06:45 - 000026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-03-31 05:06 - 2009-07-14 06:45 - 000026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-03-31 05:05 - 2015-07-27 18:15 - 000000000 ____D C:\Program Files (x86)\Realtek
2020-03-31 05:05 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2020-03-31 05:01 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF
2020-03-31 04:48 - 2009-07-14 07:13 - 000781790 _____ C:\Windows\system32\PerfStringBackup.INI
2020-03-31 04:44 - 2015-08-12 19:27 - 000000000 ____D C:\ProgramData\Reimage Protector
2020-03-31 04:44 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-03-31 04:43 - 2009-07-14 06:45 - 000268392 _____ C:\Windows\system32\FNTCACHE.DAT
2020-03-31 04:37 - 2019-02-28 00:25 - 000000000 ____D C:\Program Files\Common Files\Apple
2020-03-31 04:35 - 2016-03-08 22:32 - 000000000 ____D C:\ProgramData\Apple
2020-03-31 04:22 - 2016-01-29 00:40 - 000000000 ____D C:\Users\Cira\AppData\Roaming\uTorrent
2020-03-31 04:19 - 2015-07-25 18:18 - 000058016 _____ C:\Users\Cira\AppData\Local\GDIPFONTCACHEV1.DAT
2020-03-31 04:08 - 2018-05-17 23:12 - 000000000 ____D C:\Users\Cira\Desktop\Sve slike
2020-03-30 04:08 - 2015-07-25 18:17 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2020-03-29 01:12 - 2019-06-11 21:28 - 000000033 _____ C:\Users\Cira\AppData\Roaming\WB.CFG
2020-03-28 22:25 - 2018-06-13 00:49 - 000003160 _____ C:\Windows\system32\Tasks\{830E0F3F-4AE3-4F02-8CE1-8EA7E1663CB9}
2020-03-28 22:25 - 2018-05-17 22:48 - 000003334 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-03-28 22:25 - 2018-05-17 22:48 - 000003206 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-03-28 22:25 - 2018-05-16 23:39 - 000004458 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-03-28 22:25 - 2018-05-16 23:17 - 000004470 _____ C:\Windows\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-03-28 22:25 - 2018-05-16 23:17 - 000004324 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-03-28 22:25 - 2015-12-27 20:20 - 000003176 _____ C:\Windows\system32\Tasks\ASC9_PerformanceMonitor
2020-03-28 22:25 - 2015-08-12 19:28 - 000003428 _____ C:\Windows\system32\Tasks\Reimage Reminder
2020-03-28 22:25 - 2015-08-12 19:27 - 000004270 _____ C:\Windows\system32\Tasks\ReimageUpdater
2020-03-25 16:31 - 2017-01-27 03:41 - 000003148 _____ C:\Windows\system32\Tasks\StartCN
2020-03-24 01:16 - 2015-07-27 18:34 - 000000000 ____D C:\ProgramData\AVAST Software
2020-03-20 15:58 - 2018-05-17 22:48 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-03-20 15:58 - 2018-05-17 22:48 - 000002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-03-20 15:58 - 2018-05-17 22:48 - 000002183 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-03-12 04:39 - 2018-05-16 23:17 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-03-12 04:39 - 2018-05-16 23:17 - 000000000 ____D C:\Windows\system32\Macromed
2020-03-12 04:39 - 2015-07-27 19:10 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-03-12 04:39 - 2015-07-27 19:10 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-03-06 00:50 - 2020-02-06 20:53 - 000000000 ____D C:\Users\Cira\AppData\Roaming\TS3Client
2020-03-03 17:28 - 2015-12-27 20:09 - 000000000 ____D C:\Windows\Minidump

==================== Files in the root of some directories ========

2015-08-26 13:53 - 2015-08-26 13:53 - 000000016 ___SH () C:\Users\Cira\AppData\Roaming\useridafile
2019-06-11 21:28 - 2020-03-29 01:12 - 000000033 _____ () C:\Users\Cira\AppData\Roaming\WB.CFG
2015-08-26 13:53 - 2015-09-08 23:11 - 000000101 ___SH () C:\Users\Cira\AppData\Roaming\wintsr.bat
2015-10-19 18:37 - 2015-10-19 18:37 - 000000073 _____ () C:\Users\Cira\AppData\Local\package.nw.new

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2020-03-29 15:39
==================== End of FRST.txt ========================


https://www.mycity.rs/must-login.png

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10517
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Ne vidim ništa sprono u logovima.

offline
  • pr1Ze
  • Pridružio: 20 Apr 2012
  • Poruke: 1632

Hvala jos jednom @Sass Drake

Ko je trenutno na forumu
 

Ukupno su 609 korisnika na forumu :: 35 registrovanih, 5 sakrivenih i 569 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3028 - dana 22 Nov 2019 07:47

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: _commandos_, A.R.Chafee.Jr., Apok, arsa, babaroga2, Boris902, Botovac, celik, cikadeda, draganca, dragisa dragisa, Drug pukovnik, GreenMan, HDMI, ivance95, LUDI, Majstorr, MB120mm, Mitogna, mladen.zovko, ostoja2, peruni, plavii, Raptor1, repac2, rovac, sergio88nis, Skijavoneska, sombrero, Srna2, suton, Toni, vasa.93, voja64, yamato