MyCity » Ambulanta » molim proveru

molim proveru

Napisano na dan: 15.2.2021

Strana:
1
2
3
4
5

molim proveru

Pagination

Prethodna strana

Sledeća strana

Pagination

Odgovori

Strana:
1
2
3
4
5

dvojkan Poslao: 06 Mar 2021 11:59 Idi na vrh
offline dvojkan Građanin Pridružio: 01 Mar 2008 Poruke: 245	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: urađeno https://www.mycity.rs/must-login.png

Profil

L3g1oN Poslao: 06 Mar 2021 18:29 Idi na vrh
offline L3g1oN AMF pripravnik Pridružio: 23 Maj 2020 Poruke: 139	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Kakvo je stanje, je l se poboljsalo?

Profil

dvojkan Poslao: 06 Mar 2021 19:39 Idi na vrh
offline dvojkan Građanin Pridružio: 01 Mar 2008 Poruke: 245	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! jeste bolje. do sad na svaki klik je nešto iskakalo , sad hoće po neki put da ode na neki sajt samostalno ali pustio sam malwarebytes i našao mi 3 neka trojanca i izbrisao. videćemo dalje

Profil

L3g1oN Poslao: 06 Mar 2021 21:38 Idi na vrh
offline L3g1oN AMF pripravnik Pridružio: 23 Maj 2020 Poruke: 139	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Odradi svez FRST sken i dostavi mi izvestaje.

Profil

dvojkan Poslao: 09 Mar 2021 19:50 Idi na vrh
offline dvojkan Građanin Pridružio: 01 Mar 2008 Poruke: 245	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 08 Mar 2021 18:08 Izveštaj skeniranja od Farbar Recovery Scan Tool (FRST) (x64) Verzija: 28-02-2021 Pokrenuo korisnik (administrator) na 720-PC (SAMSUNG ELECTRONICS CO., LTD. RV420/RV520/RV720/E3530/S3530/E3420/E3520) (08-03-2021 17:53:11) Pokrenuto sa C:\Users\korisnik\Desktop Učitani Profili: korisnik Platform: Windows 7 Ultimate Service Pack 1 (X64) Jezik: engleski (SAD) -> srpski (latinica, Srbija i Crna Gora (bivša)) Podrazumevani pregledač: Chrome Režim pokretanja sistema: Normal ==================== Procesi (Na Beloj Listi) ================= (Ukoliko je stavka unešena u fixlist, proces ce biti zatvoren. Datoteka nece biti premešten.) (ACD Systems International -> ) [Datoteka nije potpisana] C:\Program Files\ACD Systems\ACDSee Pro\10.0\ACDSeeCommanderPro10.exe (ACD Systems International Inc. -> ) [Datoteka nije potpisana] C:\Program Files\ACD Systems\ACDSee Home\24.0\ACDSeeCommanderHome24.exe (ACD Systems International Inc. -> ACD Systems) [Datoteka nije potpisana] C:\Program Files\ACD Systems\ACDSee Home\24.0\acdIDInTouch2.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <14> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe ==================== Registar (Na Beloj Listi) =================== (Ukoliko je stavka unešena u fixlist, registru stavka ce biti vraćena na podrazumevanu vrednost ili uklonjena. Datoteka neće biti premeštena.) HKLM\...\Run: [ACHW24EN] => C:\Program Files\ACD Systems\ACDSee Home\24.0\acdIDInTouch2.exe [2088408 2020-10-20] (ACD Systems International Inc. -> ACD Systems) [Datoteka nije potpisana] HKU\S-1-5-21-746845287-3329047123-463373260-1000\...\Run: [ACDSeeCommanderPro10] => C:\Program Files\ACD Systems\ACDSee Pro\10.0\ACDSeeCommanderPro10.exe [3412936 2016-10-04] (ACD Systems International -> ) [Datoteka nije potpisana] HKU\S-1-5-21-746845287-3329047123-463373260-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8358680 2015-06-01] (Piriform Ltd -> Piriform Ltd) HKU\S-1-5-21-746845287-3329047123-463373260-1000\...\Run: [ACDSeeCommanderHome24] => C:\Program Files\ACD Systems\ACDSee Home\24.0\ACDSeeCommanderHome24.exe [6658208 2020-10-20] (ACD Systems International Inc. -> ) [Datoteka nije potpisana] HKU\S-1-5-21-746845287-3329047123-463373260-1000\...\Policies\Explorer: [NoInstrumentation] 1 HKLM\...\Print\Monitors\Nitro PDF Port Monitor: C:\Windows\SYSTEM32\nitrolocalmon9.dll [29704 2013-12-17] (Nitro PDF Software -> Nitro PDF Software) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.104\Installer\chrmstp.exe [2021-01-31] (Google LLC -> Google LLC) Policies: C:\ProgramData\NTUSER.pol: Restrikcije <==== Pažnja ==================== Planirani Zadaci (Na Beloj Listi) ============ (Ukoliko je stavka unešena u fixlist, biće uklonjena iz registra. Datoteka neće biti premeštena ukoliko nije izlistana zasebno..) Task: {040DB50B-AC9A-4D06-8298-422A707CF1D1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: {0EC9067F-AD5D-4B5D-A049-209F15084608} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: {3014A3B5-0EAF-4F76-AD3E-894177454475} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6158768 2021-02-14] (Microsoft Corporation -> Microsoft Corporation) Task: {3F534421-FE0A-4591-BE95-E27C384ED1B0} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfigAndContent Task: {3F534421-FE0A-4591-BE95-E27C384ED1B0} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-04-24]] (Microsoft Windows -> Microsoft Corporation) Task: {43B013E0-3E9A-42F4-965B-08B2AF35CA0A} - System32\Tasks\TrackerAutoUpdate => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe [4487904 2016-04-19] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.) Task: {4A3A57A9-3E06-4A44-81EA-C6A5AB042997} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig Task: {4A3A57A9-3E06-4A44-81EA-C6A5AB042997} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(2): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshContent Task: {4A3A57A9-3E06-4A44-81EA-C6A5AB042997} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(3): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-04-24]] (Microsoft Windows -> Microsoft Corporation) Task: {4CC0FE9B-D306-45D0-9DD8-B60996B2130C} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig Task: {4CC0FE9B-D306-45D0-9DD8-B60996B2130C} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-04-24]] (Microsoft Windows -> Microsoft Corporation) Task: {53D571FC-4707-4509-8C9D-91F5ED2E4F58} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-746845287-3329047123-463373260-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe Task: {53F76E91-273F-4859-B7B6-0DA2C1D2A7E6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2017-11-15] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {67405E29-D725-4B58-8B5C-E8B3C8060CE8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6158768 2021-02-14] (Microsoft Corporation -> Microsoft Corporation) Task: {6FDBCD66-EDBC-4CB1-B13B-C6C9CA3FB86D} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(1): %windir%\system32\GWX\GWXUXWorker.exe -> /ScheduleUpgradeReminderTime Task: {6FDBCD66-EDBC-4CB1-B13B-C6C9CA3FB86D} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-04-24]] (Microsoft Windows -> Microsoft Corporation) Task: {70DAD081-C57D-4E83-A22B-E16572BE32E4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [6405912 2015-06-01] (Piriform Ltd -> Piriform Ltd) Task: {75B5A7BE-C187-40E0-A169-6E4959DCD090} - System32\Tasks\{E5139005-6F0E-485F-921E-74916B0B5751} => C:\Program Files (x86)\Nitro\Pro 9\NitroPDF.exe [5485064 2013-12-17] (Nitro PDF Software -> Nitro PDF) Task: {773DE983-0F5C-4943-B856-C9EB233B3AB6} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-746845287-3329047123-463373260-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe Task: {79FC1C1C-5440-4B5E-B6F8-F28AAE044915} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158568 2021-02-14] (Microsoft Corporation -> Microsoft Corporation) Task: {823AAA7B-318C-460C-922F-8BA51DE7A8F2} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24612256 2021-02-05] (Microsoft Corporation -> Microsoft Corporation) Task: {86063FFB-370B-4B00-B28E-9E27AF992DA6} - System32\Tasks\Games\UpdateCheck_S-1-5-21-746845287-3329047123-463373260-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2746368 2014-11-15] (Microsoft Windows -> Microsoft Corporation) Task: {8DA7CF1C-3C00-4711-8666-88D92265DF26} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.) Task: {953D1E24-A5CD-4974-8971-20FD8240C4CC} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24612256 2021-02-05] (Microsoft Corporation -> Microsoft Corporation) Task: {98EF2D8B-6030-4AA5-B30A-52F78BC5EF70} - System32\Tasks\{F980A2AA-0879-4540-8FE8-B57507D60191} => C:\Program Files (x86)\Nitro\Pro 9\NitroPDF.exe [5485064 2013-12-17] (Nitro PDF Software -> Nitro PDF) Task: {9B49AE81-C2C2-4776-B049-0019C691DCC0} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-746845287-3329047123-463373260-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe Task: {C4D2A224-9EE3-4D0C-8186-C8EC24F95A37} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_148_Plugin.exe [1455752 2018-11-13] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {E4300030-83D1-498F-A8BF-102BA3EDDDD9} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158568 2021-02-14] (Microsoft Corporation -> Microsoft Corporation) Task: {FA32E743-0704-49E4-8E85-0E62043FB66F} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe (Ukoliko je stavka unešena u fixlist, planirani zadaci (.job) datoteke će biti premeštene. Datoteka koju zadatak izvršava neće biti uklonjena.) Task: C:\Windows\Tasks\TrackerAutoUpdate.job => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe-CheckUpdate(Tracker Software Products (Canada) Ltd.Kee ==================== Internet (Na Beloj Listi) ==================== (Ukoliko je stavka unešena u fixlist, ako je to registru stavka, biće uklonjena ili vraćena na podrazumevanu vrednost.) Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.) Hosts: Postoji više od jednog unosa u Hosts. Pogledati Hosts sekciju iz Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{41C84ED3-C0DD-4CB2-8A18-D0BDF0E29827}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{6678FE1E-5241-4B1B-93E9-044DB267A373}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{B52A5556-1FFA-4B76-84FB-6EBE83B28CEE}: [DhcpNameServer] 89.216.1.40 89.216.1.50 Tcpip\..\Interfaces\{FBA819D8-C074-4A1F-A148-259DBF56E06A}: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF DefaultProfile: 8j2bf1ih.default FF ProfilePath: C:\Users\korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\8j2bf1ih.default [2021-02-26] FF Homepage: Mozilla\Firefox\Profiles\8j2bf1ih.default -> hxxps://www.google.rs/ FF Extension: (Video DownloadHelper) - C:\Users\korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\8j2bf1ih.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-03-16] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_31_0_0_148.dll [2018-11-13] (Adobe Systems Incorporated -> ) FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2016-04-19] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.) FF Plugin: @java.com/DTPlugin,version=11.102.2 -> C:\Program Files\Java\jre1.8.0_102\bin\dtplugin\npDeployJava1.dll [2016-08-06] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre1.8.0_91\bin\new_plugin\npjp2.dll [Nema Datoteke] FF Plugin: @java.com/JavaPlugin,version=11.102.2 -> C:\Program Files\Java\jre1.8.0_102\bin\plugin2\npjp2.dll [2016-08-06] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-12-14] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_148.dll [2018-11-13] (Adobe Systems Incorporated -> ) FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2016-04-19] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-04] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-12-14] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 9\npnitromozilla.dll [2013-12-17] (Nitro PDF Software -> Nitro PDF) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Nema Datoteke] FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-02-25] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-746845287-3329047123-463373260-1000: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2016-04-19] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.) Chrome: ======= CHR Profile: C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default [2021-03-08] CHR Extension: (Презентације) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-26] CHR Extension: (Документи) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-10-26] CHR Extension: (Google диск) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-20] CHR Extension: (YouTube) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-10-26] CHR Extension: (Video Downloader professional) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2020-07-24] CHR Extension: (Табеле) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-10-26] CHR Extension: (Google документи офлајн) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-06] CHR Extension: (Плаћања у Chrome веб-продавници) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-03] CHR Extension: (Gmail) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-24] CHR Extension: (Chrome Media Router) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-02-03] CHR HKU\S-1-5-21-746845287-3329047123-463373260-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Servisi (Na Beloj Listi) =================== (Ukoliko je stavka unešena u fixlist, biće uklonjena iz registra. Datoteka neće biti premeštena ukoliko nije izlistana zasebno..) S3 Adguard Service; C:\Program Files (x86)\Adguard\AdguardSvc.exe [149496 2016-08-26] (Performix LLC -> Performix LLC) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.) S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2017-11-15] (Adobe Systems Incorporated -> Adobe Systems Incorporated) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11137448 2021-02-05] (Microsoft Corporation -> Microsoft Corporation) S3 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [437224 2016-10-27] (Digital Wave Ltd -> Digital Wave Ltd.) S3 Disc Soft Bus Service; C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe [887056 2014-07-10] (Disc Soft Ltd -> Disc Soft Ltd) S3 NitroDriverReadSpool9; C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe [230920 2013-12-17] (Nitro PDF Software -> Nitro PDF Software) S3 nlsX86cc; C:\Windows\SysWOW64\NLSSRV32.EXE [69640 2013-12-17] (Nitro PDF Software -> Nalpeiron Ltd.) S3 RalinkRegistryWriter; C:\Program Files (x86)\Tenda\Common\RaRegistry.exe [375872 2011-03-31] (Ralink Technology Corporation -> Ralink Technology, Corp.) S3 RalinkRegistryWriter64; C:\Program Files (x86)\Tenda\Common\RaRegistry64.exe [454208 2011-03-31] (Ralink Technology Corporation -> Ralink Technology, Corp.) S3 RaMediaServer; C:\Program Files (x86)\Tenda\Common\RaMediaServer.exe [621632 2011-03-04] (Ralink Technology Corporation -> ) S3 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [745664 2016-01-11] (@ByELDI -> @ByELDI) [Datoteka nije potpisana] R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2014-11-15] (Microsoft Windows -> Microsoft Corporation) S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X] S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X] S4 MBAMScheduler; "\mbamscheduler.exe" [X] S2 MBAMService-BackupByMalwarebytesPortable; "C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe" [X] S2 RegSrvc; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [X] S3 ZAMSvc; "C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe" /service [X] ===================== Drajveri (Na Beloj Listi) =================== (Ukoliko je stavka unešena u fixlist, biće uklonjena iz registra. Datoteka neće biti premeštena ukoliko nije izlistana zasebno..) R1 adgnetworktdidrv; C:\Windows\System32\drivers\adgnetworktdidrv.sys [62536 2016-07-21] (Performix LLC -> ) R3 dtscsibus; C:\Windows\System32\DRIVERS\dtscsibus.sys [29696 2016-04-26] (Disc Soft Ltd -> Disc Soft Ltd) S3 GemCCID; C:\Windows\System32\DRIVERS\GemCCID.sys [137712 2016-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Gemalto) S3 gfiutil; C:\Windows\System32\drivers\gfiutil.sys [31264 2013-09-04] (GFI Software (Florida) Inc. -> ThreatTrack Security) R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [27552 2018-02-25] (Martin Malik - REALiX -> REALiX(tm)) S3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [49304 2014-12-29] (ManyCam LLC -> Visicom Media Inc.) S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes Corporation -> Malwarebytes) U5 MBAMService; C:\Users\korisnik\AppData\Local\Temp\Rar$EXa4820.37550\Programs\Malwarebytes Anti-Malware_x64\App\Malwarebytes\mbamservice.exe [1136608 2016-03-10] (Malwarebytes Corporation -> Malwarebytes) <==== Pažnja S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation -> Malwarebytes Corporation) R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35992 2014-12-29] (ManyCam LLC -> Visicom Media Inc.) S2 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [142120 2007-04-27] (SafeNet, Inc. -> SafeNet, Inc.) S3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [3567488 2016-05-22] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 usbbus; C:\Windows\System32\DRIVERS\lgx64bus.sys [17920 2008-11-19] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) S3 UsbDiag; C:\Windows\System32\DRIVERS\lgx64diag.sys [27136 2008-11-19] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) S3 USBModem; C:\Windows\System32\DRIVERS\lgx64modem.sys [33792 2008-11-19] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) R3 usbsmi; C:\Windows\System32\DRIVERS\SMIksdrv.sys [206336 2011-03-02] (Silicon Motion, Inc. -> SMI) S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [159936 2016-08-16] (NGO -> MBB) S3 btwaudio; system32\drivers\btwaudio.sys [X] S3 btwavdt; system32\DRIVERS\btwavdt.sys [X] S3 btwl2cap; system32\DRIVERS\btwl2cap.sys [X] S3 btwrchid; system32\DRIVERS\btwrchid.sys [X] S3 pccsmcfd; system32\DRIVERS\pccsmcfdx64.sys [X] S3 VGPU; System32\drivers\rdvgkmd.sys [X] S1 ZAM; \??\C:\Windows\System32\drivers\zam64.sys [X] S1 ZAM_Guard; \??\C:\Windows\System32\drivers\zamguard64.sys [X] S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X] S3 ZTEusbnet; system32\DRIVERS\ZTEusbnet.sys [X] S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X] S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X] ==================== NetSvcs (Na Beloj Listi) =================== (Ukoliko je stavka unešena u fixlist, biće uklonjena iz registra. Datoteka neće biti premeštena ukoliko nije izlistana zasebno..) ==================== Mesec dana (kreirane) (Na Beloj Listi) ========= (Ukoliko je stavka unešena u fixlist, Datoteka/Fascikla će biti premeštena.) Greška tokom čitanja datoteke: "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alatke za Microsoft Office " 2021-03-06 18:54 - 2021-03-06 18:55 - 000192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2021-03-06 18:53 - 2021-03-06 18:53 - 000000000 ____D C:\ProgramData\Malwarebytes 2021-03-06 18:53 - 2016-03-10 01:09 - 000065408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2021-03-06 18:53 - 2016-03-10 01:08 - 000140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys 2021-03-06 18:53 - 2016-03-10 01:08 - 000027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2021-03-06 17:58 - 2021-03-06 17:59 - 061381823 _____ C:\Users\korisnik\Downloads\Dog Sex (17).mp4 2021-03-06 17:57 - 2021-03-06 17:57 - 098232373 _____ C:\Users\korisnik\Downloads\Dog Sex (16).mp4 2021-03-06 17:56 - 2021-03-06 17:56 - 023284599 _____ C:\Users\korisnik\Downloads\Dog Sex (15).mp4 2021-03-06 17:55 - 2021-03-06 17:56 - 038904981 _____ C:\Users\korisnik\Downloads\Dog Sex (14).mp4 2021-03-06 17:54 - 2021-03-06 17:55 - 129991094 _____ C:\Users\korisnik\Downloads\Dog Sex (13).mp4 2021-03-06 17:48 - 2021-03-06 17:48 - 041438192 _____ C:\Users\korisnik\Downloads\Dog Sex (12).mp4 2021-03-06 17:46 - 2021-03-06 17:47 - 042508049 _____ C:\Users\korisnik\Downloads\Dog Sex (11).mp4 2021-03-06 17:43 - 2021-03-06 17:44 - 114644134 _____ C:\Users\korisnik\Downloads\Dog Sex Painal after nice anal sex with dog.mp4 2021-03-06 17:43 - 2021-03-06 17:43 - 039123237 _____ C:\Users\korisnik\Downloads\Dog Sex (10).mp4 2021-03-06 17:41 - 2021-03-06 17:41 - 024615224 _____ C:\Users\korisnik\Downloads\Dog Sex (9).mp4 2021-03-06 17:24 - 2021-03-06 17:25 - 099420350 _____ C:\Users\korisnik\Downloads\Dog Sex (7).mp4 2021-03-06 17:23 - 2021-03-06 17:23 - 041390543 _____ C:\Users\korisnik\Downloads\Dog Sex (5).mp4 2021-03-06 17:23 - 2021-03-06 17:23 - 035302358 _____ C:\Users\korisnik\Downloads\Dog Sex (6).mp4 2021-03-06 17:19 - 2021-03-06 17:20 - 048667139 _____ C:\Users\korisnik\Downloads\Dog Sex (4).mp4 2021-03-06 17:14 - 2021-03-06 17:14 - 038904981 _____ C:\Users\korisnik\Downloads\Dog Sex (3).mp4 2021-03-06 17:06 - 2021-03-06 17:08 - 096750050 _____ C:\Users\korisnik\Downloads\Dog Sex (2).mp4 2021-03-06 17:04 - 2021-03-06 17:05 - 041994933 _____ C:\Users\korisnik\Downloads\Dog Sex (1).mp4 2021-03-06 17:04 - 2021-03-06 17:04 - 077717419 _____ C:\Users\korisnik\Downloads\Dog Sex .mp4 2021-03-06 11:55 - 2021-03-06 11:57 - 000000000 ____D C:\AdwCleaner 2021-03-06 11:54 - 2021-03-06 11:54 - 008463216 _____ (Malwarebytes) C:\Users\korisnik\Desktop\adwcleaner_8.1.exe 2021-02-26 19:19 - 2021-02-26 19:19 - 008840129 _____ C:\Users\korisnik\Downloads\video-1614097719.mp4 2021-02-26 19:11 - 2021-02-26 19:11 - 000000008 __RSH C:\ProgramData\ntuser.pol 2021-02-26 19:09 - 2021-02-26 19:10 - 000004924 _____ C:\Users\korisnik\Desktop\Fixlog.txt 2021-02-19 17:07 - 2021-03-06 12:00 - 000000000 ____D C:\Users\korisnik\AppData\LocalLow\uTorrent 2021-02-19 16:59 - 2021-03-08 17:53 - 000000000 ____D C:\Users\korisnik\Desktop\FRST-OlderVersion 2021-02-15 18:29 - 2021-03-06 20:09 - 000000000 ___HD C:\Users\korisnik\Desktop\[Originals] 2021-02-15 16:31 - 2021-03-08 17:54 - 000022366 _____ C:\Users\korisnik\Desktop\FRST.txt 2021-02-15 16:31 - 2021-03-08 17:53 - 000000000 ____D C:\FRST 2021-02-15 16:29 - 2021-03-08 17:53 - 002301440 _____ (Farbar) C:\Users\korisnik\Desktop\FRST64.exe 2021-02-15 15:16 - 2021-02-27 18:53 - 000000000 ____D C:\Users\korisnik\AppData\LocalLow\IGDump 2021-02-15 15:08 - 2021-02-15 15:08 - 000000000 ____D C:\Users\korisnik\AppData\Local\mbam 2021-02-15 15:05 - 2021-02-15 15:05 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys ==================== Mesec dana (modifikovane) ================== (Ukoliko je stavka unešena u fixlist, Datoteka/Fascikla će biti premeštena.) 2021-03-08 16:52 - 2009-07-14 05:45 - 000026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2021-03-08 16:52 - 2009-07-14 05:45 - 000026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2021-03-08 16:42 - 2009-07-14 06:13 - 000006170 _____ C:\Windows\system32\PerfStringBackup.INI 2021-03-08 16:42 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf 2021-03-08 16:37 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-03-08 16:36 - 2016-04-28 10:25 - 000000000 ____D C:\ProgramData\NVIDIA 2021-03-06 19:29 - 2016-11-23 16:08 - 000000000 ____D C:\Program Files\KMSpico 2021-03-06 18:48 - 2016-05-10 21:55 - 000000000 ____D C:\Users\korisnik\AppData\Roaming\uTorrent 2021-03-06 12:01 - 2019-06-18 14:48 - 000000000 ____D C:\Users\korisnik\AppData\Local\BitTorrentHelper 2021-03-06 11:57 - 2016-04-29 21:42 - 000000000 ____D C:\ProgramData\IObit 2021-03-06 11:50 - 2016-05-04 10:58 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2021-02-26 19:26 - 2016-06-01 16:28 - 000002067 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-02-26 19:09 - 2009-07-14 04:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy 2021-02-26 19:09 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy 2021-02-26 19:04 - 2018-03-15 13:01 - 000000000 ____D C:\ProgramData\GlarySoft 2021-02-26 19:04 - 2018-03-12 18:12 - 000000000 ____D C:\Users\korisnik\AppData\Roaming\GlarySoft 2021-02-19 17:29 - 2016-04-26 20:34 - 000000000 ____D C:\Users\korisnik\AppData\Roaming\BSplayer PRO 2021-02-15 16:24 - 2021-02-03 19:42 - 000000000 ____D C:\ProgramData\TranslateService 2021-02-15 16:00 - 2021-02-03 19:34 - 000000000 ____D C:\Users\korisnik\AppData\Local\Secure File Deleter 6 2021-02-15 16:00 - 2016-05-21 16:09 - 000000000 ____D C:\Program Files (x86)\ManyCam 2021-02-15 16:00 - 2016-02-08 15:22 - 000000000 ___RD C:\Users\korisnik\Desktop\Nova fascikla 2021-02-15 15:59 - 2016-06-03 15:11 - 000000000 ____D C:\Users\korisnik\AppData\Roaming\Nitro PDF 2021-02-15 15:49 - 2018-12-22 10:20 - 000000000 ____D C:\Users\korisnik\AppData\Local\CrashDumps 2021-02-15 15:05 - 2016-05-03 11:24 - 000000000 ____D C:\ProgramData\Malwarebytes-BackupByMalwarebytesPortable 2021-02-14 16:04 - 2016-12-22 19:56 - 000000000 ____D C:\Program Files (x86)\Igra_ProfiPreferans_com 2021-02-14 16:03 - 2016-04-26 20:50 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-02-14 16:01 - 2009-07-14 04:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared 2021-02-14 15:51 - 2016-04-26 20:47 - 000000000 ____D C:\Program Files\Microsoft Office 2021-02-14 15:50 - 2016-05-05 10:59 - 000000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware 2021-02-12 16:53 - 2016-06-01 16:29 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task ==================== Datoteke u korenu nekih direktorijuma ======== 2016-10-14 09:00 - 2016-10-14 09:00 - 000000256 _____ () C:\ProgramData\fontcacheev1.dat 2016-10-31 22:48 - 2016-10-31 22:48 - 000000000 ____H () C:\Users\korisnik\AppData\Local\BITC4E7.tmp 2017-03-24 11:55 - 2017-03-24 11:55 - 000000000 _____ () C:\Users\korisnik\AppData\Local\{7F7CD0A6-B533-4443-9BB0-121CE3C83202} 2016-10-31 22:48 - 2016-10-31 22:48 - 000000000 _____ () C:\Users\korisnik\AppData\Local\{E0C944B0-EDBC-4913-A741-41E409FE0557} ==================== SigCheck ============================ (Ne postoji automatizovan popravak za datoteke koji nisu prošle verifikaciju.) LastRegBack: 2021-03-06 13:11 ==================== Kraj od FRST.txt ======================== https://www.mycity.rs/must-login.png Dopuna: 08 Mar 2021 18:23 Izveštaj skeniranja od Farbar Recovery Scan Tool (FRST) (x64) Verzija: 28-02-2021 Pokrenuo korisnik (administrator) na 720-PC (SAMSUNG ELECTRONICS CO., LTD. RV420/RV520/RV720/E3530/S3530/E3420/E3520) (08-03-2021 18:17:58) Pokrenuto sa C:\Users\korisnik\Desktop Učitani Profili: korisnik Platform: Windows 7 Ultimate Service Pack 1 (X64) Jezik: engleski (SAD) -> srpski (latinica, Srbija i Crna Gora (bivša)) Podrazumevani pregledač: Chrome Režim pokretanja sistema: Normal ==================== Procesi (Na Beloj Listi) ================= (Ukoliko je stavka unešena u fixlist, proces ce biti zatvoren. Datoteka nece biti premešten.) (ACD Systems International -> ) [Datoteka nije potpisana] C:\Program Files\ACD Systems\ACDSee Pro\10.0\ACDSeeCommanderPro10.exe (ACD Systems International Inc. -> ) [Datoteka nije potpisana] C:\Program Files\ACD Systems\ACDSee Home\24.0\ACDSeeCommanderHome24.exe (ACD Systems International Inc. -> ACD Systems) [Datoteka nije potpisana] C:\Program Files\ACD Systems\ACDSee Home\24.0\acdIDInTouch2.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe ==================== Registar (Na Beloj Listi) =================== (Ukoliko je stavka unešena u fixlist, registru stavka ce biti vraćena na podrazumevanu vrednost ili uklonjena. Datoteka neće biti premeštena.) HKLM\...\Run: [ACHW24EN] => C:\Program Files\ACD Systems\ACDSee Home\24.0\acdIDInTouch2.exe [2088408 2020-10-20] (ACD Systems International Inc. -> ACD Systems) [Datoteka nije potpisana] HKU\S-1-5-21-746845287-3329047123-463373260-1000\...\Run: [ACDSeeCommanderPro10] => C:\Program Files\ACD Systems\ACDSee Pro\10.0\ACDSeeCommanderPro10.exe [3412936 2016-10-04] (ACD Systems International -> ) [Datoteka nije potpisana] HKU\S-1-5-21-746845287-3329047123-463373260-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8358680 2015-06-01] (Piriform Ltd -> Piriform Ltd) HKU\S-1-5-21-746845287-3329047123-463373260-1000\...\Run: [ACDSeeCommanderHome24] => C:\Program Files\ACD Systems\ACDSee Home\24.0\ACDSeeCommanderHome24.exe [6658208 2020-10-20] (ACD Systems International Inc. -> ) [Datoteka nije potpisana] HKU\S-1-5-21-746845287-3329047123-463373260-1000\...\Policies\Explorer: [NoInstrumentation] 1 HKLM\...\Print\Monitors\Nitro PDF Port Monitor: C:\Windows\SYSTEM32\nitrolocalmon9.dll [29704 2013-12-17] (Nitro PDF Software -> Nitro PDF Software) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.104\Installer\chrmstp.exe [2021-01-31] (Google LLC -> Google LLC) Policies: C:\ProgramData\NTUSER.pol: Restrikcije <==== Pažnja ==================== Planirani Zadaci (Na Beloj Listi) ============ (Ukoliko je stavka unešena u fixlist, biće uklonjena iz registra. Datoteka neće biti premeštena ukoliko nije izlistana zasebno..) Task: {040DB50B-AC9A-4D06-8298-422A707CF1D1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: {0EC9067F-AD5D-4B5D-A049-209F15084608} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: {3014A3B5-0EAF-4F76-AD3E-894177454475} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6158768 2021-02-14] (Microsoft Corporation -> Microsoft Corporation) Task: {3F534421-FE0A-4591-BE95-E27C384ED1B0} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfigAndContent Task: {3F534421-FE0A-4591-BE95-E27C384ED1B0} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-04-24]] (Microsoft Windows -> Microsoft Corporation) Task: {43B013E0-3E9A-42F4-965B-08B2AF35CA0A} - System32\Tasks\TrackerAutoUpdate => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe [4487904 2016-04-19] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.) Task: {4A3A57A9-3E06-4A44-81EA-C6A5AB042997} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig Task: {4A3A57A9-3E06-4A44-81EA-C6A5AB042997} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(2): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshContent Task: {4A3A57A9-3E06-4A44-81EA-C6A5AB042997} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(3): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-04-24]] (Microsoft Windows -> Microsoft Corporation) Task: {4CC0FE9B-D306-45D0-9DD8-B60996B2130C} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig Task: {4CC0FE9B-D306-45D0-9DD8-B60996B2130C} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-04-24]] (Microsoft Windows -> Microsoft Corporation) Task: {53D571FC-4707-4509-8C9D-91F5ED2E4F58} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-746845287-3329047123-463373260-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe Task: {53F76E91-273F-4859-B7B6-0DA2C1D2A7E6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2017-11-15] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {67405E29-D725-4B58-8B5C-E8B3C8060CE8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6158768 2021-02-14] (Microsoft Corporation -> Microsoft Corporation) Task: {6FDBCD66-EDBC-4CB1-B13B-C6C9CA3FB86D} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(1): %windir%\system32\GWX\GWXUXWorker.exe -> /ScheduleUpgradeReminderTime Task: {6FDBCD66-EDBC-4CB1-B13B-C6C9CA3FB86D} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-04-24]] (Microsoft Windows -> Microsoft Corporation) Task: {70DAD081-C57D-4E83-A22B-E16572BE32E4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [6405912 2015-06-01] (Piriform Ltd -> Piriform Ltd) Task: {75B5A7BE-C187-40E0-A169-6E4959DCD090} - System32\Tasks\{E5139005-6F0E-485F-921E-74916B0B5751} => C:\Program Files (x86)\Nitro\Pro 9\NitroPDF.exe [5485064 2013-12-17] (Nitro PDF Software -> Nitro PDF) Task: {773DE983-0F5C-4943-B856-C9EB233B3AB6} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-746845287-3329047123-463373260-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe Task: {79FC1C1C-5440-4B5E-B6F8-F28AAE044915} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158568 2021-02-14] (Microsoft Corporation -> Microsoft Corporation) Task: {823AAA7B-318C-460C-922F-8BA51DE7A8F2} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24612256 2021-02-05] (Microsoft Corporation -> Microsoft Corporation) Task: {86063FFB-370B-4B00-B28E-9E27AF992DA6} - System32\Tasks\Games\UpdateCheck_S-1-5-21-746845287-3329047123-463373260-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2746368 2014-11-15] (Microsoft Windows -> Microsoft Corporation) Task: {8DA7CF1C-3C00-4711-8666-88D92265DF26} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.) Task: {953D1E24-A5CD-4974-8971-20FD8240C4CC} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24612256 2021-02-05] (Microsoft Corporation -> Microsoft Corporation) Task: {98EF2D8B-6030-4AA5-B30A-52F78BC5EF70} - System32\Tasks\{F980A2AA-0879-4540-8FE8-B57507D60191} => C:\Program Files (x86)\Nitro\Pro 9\NitroPDF.exe [5485064 2013-12-17] (Nitro PDF Software -> Nitro PDF) Task: {9B49AE81-C2C2-4776-B049-0019C691DCC0} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-746845287-3329047123-463373260-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe Task: {C4D2A224-9EE3-4D0C-8186-C8EC24F95A37} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_148_Plugin.exe [1455752 2018-11-13] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {E4300030-83D1-498F-A8BF-102BA3EDDDD9} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158568 2021-02-14] (Microsoft Corporation -> Microsoft Corporation) Task: {FA32E743-0704-49E4-8E85-0E62043FB66F} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe (Ukoliko je stavka unešena u fixlist, planirani zadaci (.job) datoteke će biti premeštene. Datoteka koju zadatak izvršava neće biti uklonjena.) Task: C:\Windows\Tasks\TrackerAutoUpdate.job => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe-CheckUpdate(Tracker Software Products (Canada) Ltd.Kee ==================== Internet (Na Beloj Listi) ==================== (Ukoliko je stavka unešena u fixlist, ako je to registru stavka, biće uklonjena ili vraćena na podrazumevanu vrednost.) Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.) Hosts: Postoji više od jednog unosa u Hosts. Pogledati Hosts sekciju iz Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{41C84ED3-C0DD-4CB2-8A18-D0BDF0E29827}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{6678FE1E-5241-4B1B-93E9-044DB267A373}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{B52A5556-1FFA-4B76-84FB-6EBE83B28CEE}: [DhcpNameServer] 89.216.1.40 89.216.1.50 Tcpip\..\Interfaces\{FBA819D8-C074-4A1F-A148-259DBF56E06A}: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF DefaultProfile: 8j2bf1ih.default FF ProfilePath: C:\Users\korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\8j2bf1ih.default [2021-03-08] FF Homepage: Mozilla\Firefox\Profiles\8j2bf1ih.default -> hxxps://www.google.rs/ FF Extension: (Video DownloadHelper) - C:\Users\korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\8j2bf1ih.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-03-16] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_31_0_0_148.dll [2018-11-13] (Adobe Systems Incorporated -> ) FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2016-04-19] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.) FF Plugin: @java.com/DTPlugin,version=11.102.2 -> C:\Program Files\Java\jre1.8.0_102\bin\dtplugin\npDeployJava1.dll [2016-08-06] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre1.8.0_91\bin\new_plugin\npjp2.dll [Nema Datoteke] FF Plugin: @java.com/JavaPlugin,version=11.102.2 -> C:\Program Files\Java\jre1.8.0_102\bin\plugin2\npjp2.dll [2016-08-06] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-12-14] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_148.dll [2018-11-13] (Adobe Systems Incorporated -> ) FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2016-04-19] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-04] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-12-14] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 9\npnitromozilla.dll [2013-12-17] (Nitro PDF Software -> Nitro PDF) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Nema Datoteke] FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-02-25] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-746845287-3329047123-463373260-1000: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2016-04-19] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.) Chrome: ======= CHR Profile: C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default [2021-03-08] CHR Extension: (Презентације) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-26] CHR Extension: (Документи) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-10-26] CHR Extension: (Google диск) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-20] CHR Extension: (YouTube) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-10-26] CHR Extension: (Video Downloader professional) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2020-07-24] CHR Extension: (Табеле) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-10-26] CHR Extension: (Google документи офлајн) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-06] CHR Extension: (Плаћања у Chrome веб-продавници) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-03] CHR Extension: (Gmail) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-24] CHR Extension: (Chrome Media Router) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-02-03] CHR HKU\S-1-5-21-746845287-3329047123-463373260-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Servisi (Na Beloj Listi) =================== (Ukoliko je stavka unešena u fixlist, biće uklonjena iz registra. Datoteka neće biti premeštena ukoliko nije izlistana zasebno..) S3 Adguard Service; C:\Program Files (x86)\Adguard\AdguardSvc.exe [149496 2016-08-26] (Performix LLC -> Performix LLC) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.) S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2017-11-15] (Adobe Systems Incorporated -> Adobe Systems Incorporated) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11137448 2021-02-05] (Microsoft Corporation -> Microsoft Corporation) S3 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [437224 2016-10-27] (Digital Wave Ltd -> Digital Wave Ltd.) S3 Disc Soft Bus Service; C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe [887056 2014-07-10] (Disc Soft Ltd -> Disc Soft Ltd) S3 NitroDriverReadSpool9; C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe [230920 2013-12-17] (Nitro PDF Software -> Nitro PDF Software) S3 nlsX86cc; C:\Windows\SysWOW64\NLSSRV32.EXE [69640 2013-12-17] (Nitro PDF Software -> Nalpeiron Ltd.) S3 RalinkRegistryWriter; C:\Program Files (x86)\Tenda\Common\RaRegistry.exe [375872 2011-03-31] (Ralink Technology Corporation -> Ralink Technology, Corp.) S3 RalinkRegistryWriter64; C:\Program Files (x86)\Tenda\Common\RaRegistry64.exe [454208 2011-03-31] (Ralink Technology Corporation -> Ralink Technology, Corp.) S3 RaMediaServer; C:\Program Files (x86)\Tenda\Common\RaMediaServer.exe [621632 2011-03-04] (Ralink Technology Corporation -> ) S3 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [745664 2016-01-11] (@ByELDI -> @ByELDI) [Datoteka nije potpisana] R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2014-11-15] (Microsoft Windows -> Microsoft Corporation) S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X] S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X] S4 MBAMScheduler; "\mbamscheduler.exe" [X] S2 MBAMService-BackupByMalwarebytesPortable; "C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe" [X] S2 RegSrvc; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [X] S3 ZAMSvc; "C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe" /service [X] ===================== Drajveri (Na Beloj Listi) =================== (Ukoliko je stavka unešena u fixlist, biće uklonjena iz registra. Datoteka neće biti premeštena ukoliko nije izlistana zasebno..) R1 adgnetworktdidrv; C:\Windows\System32\drivers\adgnetworktdidrv.sys [62536 2016-07-21] (Performix LLC -> ) R3 dtscsibus; C:\Windows\System32\DRIVERS\dtscsibus.sys [29696 2016-04-26] (Disc Soft Ltd -> Disc Soft Ltd) S3 GemCCID; C:\Windows\System32\DRIVERS\GemCCID.sys [137712 2016-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Gemalto) S3 gfiutil; C:\Windows\System32\drivers\gfiutil.sys [31264 2013-09-04] (GFI Software (Florida) Inc. -> ThreatTrack Security) R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [27552 2018-02-25] (Martin Malik - REALiX -> REALiX(tm)) S3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [49304 2014-12-29] (ManyCam LLC -> Visicom Media Inc.) S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes Corporation -> Malwarebytes) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation -> Malwarebytes Corporation) R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35992 2014-12-29] (ManyCam LLC -> Visicom Media Inc.) S2 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [142120 2007-04-27] (SafeNet, Inc. -> SafeNet, Inc.) S3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [3567488 2016-05-22] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 usbbus; C:\Windows\System32\DRIVERS\lgx64bus.sys [17920 2008-11-19] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) S3 UsbDiag; C:\Windows\System32\DRIVERS\lgx64diag.sys [27136 2008-11-19] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) S3 USBModem; C:\Windows\System32\DRIVERS\lgx64modem.sys [33792 2008-11-19] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) R3 usbsmi; C:\Windows\System32\DRIVERS\SMIksdrv.sys [206336 2011-03-02] (Silicon Motion, Inc. -> SMI) S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [159936 2016-08-16] (NGO -> MBB) S3 btwaudio; system32\drivers\btwaudio.sys [X] S3 btwavdt; system32\DRIVERS\btwavdt.sys [X] S3 btwl2cap; system32\DRIVERS\btwl2cap.sys [X] S3 btwrchid; system32\DRIVERS\btwrchid.sys [X] S3 pccsmcfd; system32\DRIVERS\pccsmcfdx64.sys [X] S3 VGPU; System32\drivers\rdvgkmd.sys [X] S1 ZAM; \??\C:\Windows\System32\drivers\zam64.sys [X] S1 ZAM_Guard; \??\C:\Windows\System32\drivers\zamguard64.sys [X] S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X] S3 ZTEusbnet; system32\DRIVERS\ZTEusbnet.sys [X] S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X] S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X] ==================== NetSvcs (Na Beloj Listi) =================== (Ukoliko je stavka unešena u fixlist, biće uklonjena iz registra. Datoteka neće biti premeštena ukoliko nije izlistana zasebno..) ==================== Mesec dana (kreirane) (Na Beloj Listi) ========= (Ukoliko je stavka unešena u fixlist, Datoteka/Fascikla će biti premeštena.) Greška tokom čitanja datoteke: "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alatke za Microsoft Office " 2021-03-06 18:54 - 2021-03-06 18:55 - 000192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2021-03-06 18:53 - 2021-03-06 18:53 - 000000000 ____D C:\ProgramData\Malwarebytes 2021-03-06 18:53 - 2016-03-10 01:09 - 000065408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2021-03-06 18:53 - 2016-03-10 01:08 - 000140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys 2021-03-06 18:53 - 2016-03-10 01:08 - 000027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2021-03-06 11:55 - 2021-03-06 11:57 - 000000000 ____D C:\AdwCleaner 2021-03-06 11:54 - 2021-03-06 11:54 - 008463216 _____ (Malwarebytes) C:\Users\korisnik\Desktop\adwcleaner_8.1.exe 2021-02-26 19:19 - 2021-02-26 19:19 - 008840129 _____ C:\Users\korisnik\Downloads\video-1614097719.mp4 2021-02-26 19:11 - 2021-02-26 19:11 - 000000008 __RSH C:\ProgramData\ntuser.pol 2021-02-26 19:09 - 2021-02-26 19:10 - 000004924 _____ C:\Users\korisnik\Desktop\Fixlog.txt 2021-02-19 17:07 - 2021-03-06 12:00 - 000000000 ____D C:\Users\korisnik\AppData\LocalLow\uTorrent 2021-02-19 16:59 - 2021-03-08 17:53 - 000000000 ____D C:\Users\korisnik\Desktop\FRST-OlderVersion 2021-02-15 18:29 - 2021-03-06 20:09 - 000000000 ___HD C:\Users\korisnik\Desktop\[Originals] 2021-02-15 16:31 - 2021-03-08 18:18 - 000022051 _____ C:\Users\korisnik\Desktop\FRST.txt 2021-02-15 16:31 - 2021-03-08 18:18 - 000000000 ____D C:\FRST 2021-02-15 16:29 - 2021-03-08 17:53 - 002301440 _____ (Farbar) C:\Users\korisnik\Desktop\FRST64.exe 2021-02-15 15:16 - 2021-02-27 18:53 - 000000000 ____D C:\Users\korisnik\AppData\LocalLow\IGDump 2021-02-15 15:08 - 2021-02-15 15:08 - 000000000 ____D C:\Users\korisnik\AppData\Local\mbam 2021-02-15 15:05 - 2021-02-15 15:05 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys ==================== Mesec dana (modifikovane) ================== (Ukoliko je stavka unešena u fixlist, Datoteka/Fascikla će biti premeštena.) 2021-03-08 18:17 - 2016-05-10 21:55 - 000000000 ____D C:\Users\korisnik\AppData\Roaming\uTorrent 2021-03-08 18:17 - 2016-05-09 15:08 - 000000000 ____D C:\Program Files\CCleaner 2021-03-08 18:17 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf 2021-03-08 16:52 - 2009-07-14 05:45 - 000026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2021-03-08 16:52 - 2009-07-14 05:45 - 000026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2021-03-08 16:42 - 2009-07-14 06:13 - 000006170 _____ C:\Windows\system32\PerfStringBackup.INI 2021-03-08 16:37 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-03-08 16:36 - 2016-04-28 10:25 - 000000000 ____D C:\ProgramData\NVIDIA 2021-03-06 19:29 - 2016-11-23 16:08 - 000000000 ____D C:\Program Files\KMSpico 2021-03-06 12:01 - 2019-06-18 14:48 - 000000000 ____D C:\Users\korisnik\AppData\Local\BitTorrentHelper 2021-03-06 11:57 - 2016-04-29 21:42 - 000000000 ____D C:\ProgramData\IObit 2021-03-06 11:50 - 2016-05-04 10:58 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2021-02-26 19:26 - 2016-06-01 16:28 - 000002067 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-02-26 19:09 - 2009-07-14 04:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy 2021-02-26 19:09 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy 2021-02-26 19:04 - 2018-03-15 13:01 - 000000000 ____D C:\ProgramData\GlarySoft 2021-02-26 19:04 - 2018-03-12 18:12 - 000000000 ____D C:\Users\korisnik\AppData\Roaming\GlarySoft 2021-02-19 17:29 - 2016-04-26 20:34 - 000000000 ____D C:\Users\korisnik\AppData\Roaming\BSplayer PRO 2021-02-15 16:24 - 2021-02-03 19:42 - 000000000 ____D C:\ProgramData\TranslateService 2021-02-15 16:00 - 2021-02-03 19:34 - 000000000 ____D C:\Users\korisnik\AppData\Local\Secure File Deleter 6 2021-02-15 16:00 - 2016-05-21 16:09 - 000000000 ____D C:\Program Files (x86)\ManyCam 2021-02-15 16:00 - 2016-02-08 15:22 - 000000000 ___RD C:\Users\korisnik\Desktop\Nova fascikla 2021-02-15 15:59 - 2016-06-03 15:11 - 000000000 ____D C:\Users\korisnik\AppData\Roaming\Nitro PDF 2021-02-15 15:49 - 2018-12-22 10:20 - 000000000 ____D C:\Users\korisnik\AppData\Local\CrashDumps 2021-02-15 15:05 - 2016-05-03 11:24 - 000000000 ____D C:\ProgramData\Malwarebytes-BackupByMalwarebytesPortable 2021-02-14 16:04 - 2016-12-22 19:56 - 000000000 ____D C:\Program Files (x86)\Igra_ProfiPreferans_com 2021-02-14 16:03 - 2016-04-26 20:50 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-02-14 16:01 - 2009-07-14 04:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared 2021-02-14 15:51 - 2016-04-26 20:47 - 000000000 ____D C:\Program Files\Microsoft Office 2021-02-14 15:50 - 2016-05-05 10:59 - 000000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware 2021-02-12 16:53 - 2016-06-01 16:29 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task ==================== Datoteke u korenu nekih direktorijuma ======== 2016-10-14 09:00 - 2016-10-14 09:00 - 000000256 _____ () C:\ProgramData\fontcacheev1.dat 2016-10-31 22:48 - 2016-10-31 22:48 - 000000000 ____H () C:\Users\korisnik\AppData\Local\BITC4E7.tmp 2017-03-24 11:55 - 2017-03-24 11:55 - 000000000 _____ () C:\Users\korisnik\AppData\Local\{7F7CD0A6-B533-4443-9BB0-121CE3C83202} 2016-10-31 22:48 - 2016-10-31 22:48 - 000000000 _____ () C:\Users\korisnik\AppData\Local\{E0C944B0-EDBC-4913-A741-41E409FE0557} ==================== SigCheck ============================ (Ne postoji automatizovan popravak za datoteke koji nisu prošle verifikaciju.) LastRegBack: 2021-03-06 13:11 ==================== Kraj od FRST.txt ======================== https://www.mycity.rs/must-login.png Dopuna: 09 Mar 2021 19:50 Izveštaj skeniranja od Farbar Recovery Scan Tool (FRST) (x64) Verzija: 28-02-2021 Pokrenuo korisnik (administrator) na 720-PC (SAMSUNG ELECTRONICS CO., LTD. RV420/RV520/RV720/E3530/S3530/E3420/E3520) (09-03-2021 19:41:33) Pokrenuto sa C:\Users\korisnik\Desktop Učitani Profili: korisnik Platform: Windows 7 Ultimate Service Pack 1 (X64) Jezik: engleski (SAD) -> srpski (latinica, Srbija i Crna Gora (bivša)) Podrazumevani pregledač: Chrome Režim pokretanja sistema: Normal ==================== Procesi (Na Beloj Listi) ================= (Ukoliko je stavka unešena u fixlist, proces ce biti zatvoren. Datoteka nece biti premešten.) (ACD Systems International -> ) [Datoteka nije potpisana] C:\Program Files\ACD Systems\ACDSee Pro\10.0\ACDSeeCommanderPro10.exe (ACD Systems International Inc. -> ) [Datoteka nije potpisana] C:\Program Files\ACD Systems\ACDSee Home\24.0\ACDSeeCommanderHome24.exe (ACD Systems International Inc. -> ACD Systems) [Datoteka nije potpisana] C:\Program Files\ACD Systems\ACDSee Home\24.0\acdIDInTouch2.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <15> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe ==================== Registar (Na Beloj Listi) =================== (Ukoliko je stavka unešena u fixlist, registru stavka ce biti vraćena na podrazumevanu vrednost ili uklonjena. Datoteka neće biti premeštena.) HKLM\...\Run: [ACHW24EN] => C:\Program Files\ACD Systems\ACDSee Home\24.0\acdIDInTouch2.exe [2088408 2020-10-20] (ACD Systems International Inc. -> ACD Systems) [Datoteka nije potpisana] HKU\S-1-5-21-746845287-3329047123-463373260-1000\...\Run: [ACDSeeCommanderPro10] => C:\Program Files\ACD Systems\ACDSee Pro\10.0\ACDSeeCommanderPro10.exe [3412936 2016-10-04] (ACD Systems International -> ) [Datoteka nije potpisana] HKU\S-1-5-21-746845287-3329047123-463373260-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8358680 2015-06-01] (Piriform Ltd -> Piriform Ltd) HKU\S-1-5-21-746845287-3329047123-463373260-1000\...\Run: [ACDSeeCommanderHome24] => C:\Program Files\ACD Systems\ACDSee Home\24.0\ACDSeeCommanderHome24.exe [6658208 2020-10-20] (ACD Systems International Inc. -> ) [Datoteka nije potpisana] HKU\S-1-5-21-746845287-3329047123-463373260-1000\...\Policies\Explorer: [NoInstrumentation] 1 HKLM\...\Print\Monitors\Nitro PDF Port Monitor: C:\Windows\SYSTEM32\nitrolocalmon9.dll [29704 2013-12-17] (Nitro PDF Software -> Nitro PDF Software) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.104\Installer\chrmstp.exe [2021-01-31] (Google LLC -> Google LLC) Policies: C:\ProgramData\NTUSER.pol: Restrikcije <==== Pažnja ==================== Planirani Zadaci (Na Beloj Listi) ============ (Ukoliko je stavka unešena u fixlist, biće uklonjena iz registra. Datoteka neće biti premeštena ukoliko nije izlistana zasebno..) Task: {040DB50B-AC9A-4D06-8298-422A707CF1D1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: {0EC9067F-AD5D-4B5D-A049-209F15084608} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: {3014A3B5-0EAF-4F76-AD3E-894177454475} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6158768 2021-02-14] (Microsoft Corporation -> Microsoft Corporation) Task: {3F534421-FE0A-4591-BE95-E27C384ED1B0} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfigAndContent Task: {3F534421-FE0A-4591-BE95-E27C384ED1B0} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-04-24]] (Microsoft Windows -> Microsoft Corporation) Task: {43B013E0-3E9A-42F4-965B-08B2AF35CA0A} - System32\Tasks\TrackerAutoUpdate => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe [4487904 2016-04-19] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.) Task: {4CC0FE9B-D306-45D0-9DD8-B60996B2130C} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig Task: {4CC0FE9B-D306-45D0-9DD8-B60996B2130C} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-04-24]] (Microsoft Windows -> Microsoft Corporation) Task: {53D571FC-4707-4509-8C9D-91F5ED2E4F58} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-746845287-3329047123-463373260-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe Task: {53F76E91-273F-4859-B7B6-0DA2C1D2A7E6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2017-11-15] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {67405E29-D725-4B58-8B5C-E8B3C8060CE8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6158768 2021-02-14] (Microsoft Corporation -> Microsoft Corporation) Task: {70DAD081-C57D-4E83-A22B-E16572BE32E4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [6405912 2015-06-01] (Piriform Ltd -> Piriform Ltd) Task: {75B5A7BE-C187-40E0-A169-6E4959DCD090} - System32\Tasks\{E5139005-6F0E-485F-921E-74916B0B5751} => C:\Program Files (x86)\Nitro\Pro 9\NitroPDF.exe [5485064 2013-12-17] (Nitro PDF Software -> Nitro PDF) Task: {773DE983-0F5C-4943-B856-C9EB233B3AB6} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-746845287-3329047123-463373260-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe Task: {79FC1C1C-5440-4B5E-B6F8-F28AAE044915} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158568 2021-02-14] (Microsoft Corporation -> Microsoft Corporation) Task: {823AAA7B-318C-460C-922F-8BA51DE7A8F2} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24612256 2021-02-05] (Microsoft Corporation -> Microsoft Corporation) Task: {86063FFB-370B-4B00-B28E-9E27AF992DA6} - System32\Tasks\Games\UpdateCheck_S-1-5-21-746845287-3329047123-463373260-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2746368 2014-11-15] (Microsoft Windows -> Microsoft Corporation) Task: {8DA7CF1C-3C00-4711-8666-88D92265DF26} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.) Task: {953D1E24-A5CD-4974-8971-20FD8240C4CC} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24612256 2021-02-05] (Microsoft Corporation -> Microsoft Corporation) Task: {98EF2D8B-6030-4AA5-B30A-52F78BC5EF70} - System32\Tasks\{F980A2AA-0879-4540-8FE8-B57507D60191} => C:\Program Files (x86)\Nitro\Pro 9\NitroPDF.exe [5485064 2013-12-17] (Nitro PDF Software -> Nitro PDF) Task: {9B49AE81-C2C2-4776-B049-0019C691DCC0} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-746845287-3329047123-463373260-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe Task: {9E703C72-12E5-46A6-BEAC-125EE7051BA2} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(1): %windir%\system32\GWX\GWXUXWorker.exe -> /ScheduleUpgradeReminderTime Task: {9E703C72-12E5-46A6-BEAC-125EE7051BA2} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-04-24]] (Microsoft Windows -> Microsoft Corporation) Task: {9FAE247F-E5BE-4123-854D-C40D7FDCF2D2} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig Task: {9FAE247F-E5BE-4123-854D-C40D7FDCF2D2} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(2): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshContent Task: {9FAE247F-E5BE-4123-854D-C40D7FDCF2D2} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(3): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-04-24]] (Microsoft Windows -> Microsoft Corporation) Task: {C4D2A224-9EE3-4D0C-8186-C8EC24F95A37} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_148_Plugin.exe [1455752 2018-11-13] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {E4300030-83D1-498F-A8BF-102BA3EDDDD9} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158568 2021-02-14] (Microsoft Corporation -> Microsoft Corporation) Task: {FA32E743-0704-49E4-8E85-0E62043FB66F} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe (Ukoliko je stavka unešena u fixlist, planirani zadaci (.job) datoteke će biti premeštene. Datoteka koju zadatak izvršava neće biti uklonjena.) Task: C:\Windows\Tasks\TrackerAutoUpdate.job => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe-CheckUpdate(Tracker Software Products (Canada) Ltd.Kee ==================== Internet (Na Beloj Listi) ==================== (Ukoliko je stavka unešena u fixlist, ako je to registru stavka, biće uklonjena ili vraćena na podrazumevanu vrednost.) Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.) Hosts: Postoji više od jednog unosa u Hosts. Pogledati Hosts sekciju iz Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{41C84ED3-C0DD-4CB2-8A18-D0BDF0E29827}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{6678FE1E-5241-4B1B-93E9-044DB267A373}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{B52A5556-1FFA-4B76-84FB-6EBE83B28CEE}: [DhcpNameServer] 89.216.1.40 89.216.1.50 Tcpip\..\Interfaces\{FBA819D8-C074-4A1F-A148-259DBF56E06A}: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF DefaultProfile: 8j2bf1ih.default FF ProfilePath: C:\Users\korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\8j2bf1ih.default [2021-03-08] FF Homepage: Mozilla\Firefox\Profiles\8j2bf1ih.default -> hxxps://www.google.rs/ FF Extension: (Video DownloadHelper) - C:\Users\korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\8j2bf1ih.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-03-16] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_31_0_0_148.dll [2018-11-13] (Adobe Systems Incorporated -> ) FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2016-04-19] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.) FF Plugin: @java.com/DTPlugin,version=11.102.2 -> C:\Program Files\Java\jre1.8.0_102\bin\dtplugin\npDeployJava1.dll [2016-08-06] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre1.8.0_91\bin\new_plugin\npjp2.dll [Nema Datoteke] FF Plugin: @java.com/JavaPlugin,version=11.102.2 -> C:\Program Files\Java\jre1.8.0_102\bin\plugin2\npjp2.dll [2016-08-06] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-12-14] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_148.dll [2018-11-13] (Adobe Systems Incorporated -> ) FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2016-04-19] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-04] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-12-14] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 9\npnitromozilla.dll [2013-12-17] (Nitro PDF Software -> Nitro PDF) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Nema Datoteke] FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-02-25] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-746845287-3329047123-463373260-1000: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2016-04-19] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.) Chrome: ======= CHR Profile: C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default [2021-03-09] CHR Extension: (Презентације) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-26] CHR Extension: (Документи) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-10-26] CHR Extension: (Google диск) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-20] CHR Extension: (YouTube) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-10-26] CHR Extension: (Video Downloader professional) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2020-07-24] CHR Extension: (Табеле) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-10-26] CHR Extension: (Google документи офлајн) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-09] CHR Extension: (Плаћања у Chrome веб-продавници) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-03] CHR Extension: (Gmail) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-24] CHR Extension: (Chrome Media Router) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-02-03] CHR HKU\S-1-5-21-746845287-3329047123-463373260-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Servisi (Na Beloj Listi) =================== (Ukoliko je stavka unešena u fixlist, biće uklonjena iz registra. Datoteka neće biti premeštena ukoliko nije izlistana zasebno..) S3 Adguard Service; C:\Program Files (x86)\Adguard\AdguardSvc.exe [149496 2016-08-26] (Performix LLC -> Performix LLC) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.) S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2017-11-15] (Adobe Systems Incorporated -> Adobe Systems Incorporated) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11137448 2021-02-05] (Microsoft Corporation -> Microsoft Corporation) S3 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [437224 2016-10-27] (Digital Wave Ltd -> Digital Wave Ltd.) S3 Disc Soft Bus Service; C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe [887056 2014-07-10] (Disc Soft Ltd -> Disc Soft Ltd) S3 NitroDriverReadSpool9; C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe [230920 2013-12-17] (Nitro PDF Software -> Nitro PDF Software) S3 nlsX86cc; C:\Windows\SysWOW64\NLSSRV32.EXE [69640 2013-12-17] (Nitro PDF Software -> Nalpeiron Ltd.) S3 RalinkRegistryWriter; C:\Program Files (x86)\Tenda\Common\RaRegistry.exe [375872 2011-03-31] (Ralink Technology Corporation -> Ralink Technology, Corp.) S3 RalinkRegistryWriter64; C:\Program Files (x86)\Tenda\Common\RaRegistry64.exe [454208 2011-03-31] (Ralink Technology Corporation -> Ralink Technology, Corp.) S3 RaMediaServer; C:\Program Files (x86)\Tenda\Common\RaMediaServer.exe [621632 2011-03-04] (Ralink Technology Corporation -> ) S3 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [745664 2016-01-11] (@ByELDI -> @ByELDI) [Datoteka nije potpisana] R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2014-11-15] (Microsoft Windows -> Microsoft Corporation) S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X] S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X] S4 MBAMScheduler; "\mbamscheduler.exe" [X] S2 MBAMService-BackupByMalwarebytesPortable; "C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe" [X] S2 RegSrvc; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [X] S3 ZAMSvc; "C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe" /service [X] ===================== Drajveri (Na Beloj Listi) =================== (Ukoliko je stavka unešena u fixlist, biće uklonjena iz registra. Datoteka neće biti premeštena ukoliko nije izlistana zasebno..) R1 adgnetworktdidrv; C:\Windows\System32\drivers\adgnetworktdidrv.sys [62536 2016-07-21] (Performix LLC -> ) R3 dtscsibus; C:\Windows\System32\DRIVERS\dtscsibus.sys [29696 2016-04-26] (Disc Soft Ltd -> Disc Soft Ltd) S3 GemCCID; C:\Windows\System32\DRIVERS\GemCCID.sys [137712 2016-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Gemalto) S3 gfiutil; C:\Windows\System32\drivers\gfiutil.sys [31264 2013-09-04] (GFI Software (Florida) Inc. -> ThreatTrack Security) R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [27552 2018-02-25] (Martin Malik - REALiX -> REALiX(tm)) S3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [49304 2014-12-29] (ManyCam LLC -> Visicom Media Inc.) S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes Corporation -> Malwarebytes) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation -> Malwarebytes Corporation) R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35992 2014-12-29] (ManyCam LLC -> Visicom Media Inc.) S2 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [142120 2007-04-27] (SafeNet, Inc. -> SafeNet, Inc.) S3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [3567488 2016-05-22] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 usbbus; C:\Windows\System32\DRIVERS\lgx64bus.sys [17920 2008-11-19] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) S3 UsbDiag; C:\Windows\System32\DRIVERS\lgx64diag.sys [27136 2008-11-19] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) S3 USBModem; C:\Windows\System32\DRIVERS\lgx64modem.sys [33792 2008-11-19] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) R3 usbsmi; C:\Windows\System32\DRIVERS\SMIksdrv.sys [206336 2011-03-02] (Silicon Motion, Inc. -> SMI) S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [159936 2016-08-16] (NGO -> MBB) S3 btwaudio; system32\drivers\btwaudio.sys [X] S3 btwavdt; system32\DRIVERS\btwavdt.sys [X] S3 btwl2cap; system32\DRIVERS\btwl2cap.sys [X] S3 btwrchid; system32\DRIVERS\btwrchid.sys [X] S3 pccsmcfd; system32\DRIVERS\pccsmcfdx64.sys [X] S3 VGPU; System32\drivers\rdvgkmd.sys [X] S1 ZAM; \??\C:\Windows\System32\drivers\zam64.sys [X] S1 ZAM_Guard; \??\C:\Windows\System32\drivers\zamguard64.sys [X] S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X] S3 ZTEusbnet; system32\DRIVERS\ZTEusbnet.sys [X] S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X] S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X] ==================== NetSvcs (Na Beloj Listi) =================== (Ukoliko je stavka unešena u fixlist, biće uklonjena iz registra. Datoteka neće biti premeštena ukoliko nije izlistana zasebno..) ==================== Mesec dana (kreirane) (Na Beloj Listi) ========= (Ukoliko je stavka unešena u fixlist, Datoteka/Fascikla će biti premeštena.) Greška tokom čitanja datoteke: "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alatke za Microsoft Office " 2021-03-09 19:41 - 2021-03-09 19:42 - 000022144 _____ C:\Users\korisnik\Desktop\FRST.txt 2021-03-09 19:37 - 2021-03-09 19:37 - 005599264 _____ C:\Users\korisnik\Downloads\videoplayback (1).mp4 2021-03-06 18:54 - 2021-03-06 18:55 - 000192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2021-03-06 18:53 - 2021-03-06 18:53 - 000000000 ____D C:\ProgramData\Malwarebytes 2021-03-06 18:53 - 2016-03-10 01:09 - 000065408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2021-03-06 18:53 - 2016-03-10 01:08 - 000140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys 2021-03-06 18:53 - 2016-03-10 01:08 - 000027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2021-03-06 11:55 - 2021-03-06 11:57 - 000000000 ____D C:\AdwCleaner 2021-03-06 11:54 - 2021-03-06 11:54 - 008463216 _____ (Malwarebytes) C:\Users\korisnik\Desktop\adwcleaner_8.1.exe 2021-02-26 19:19 - 2021-02-26 19:19 - 008840129 _____ C:\Users\korisnik\Downloads\video-1614097719.mp4 2021-02-26 19:11 - 2021-02-26 19:11 - 000000008 __RSH C:\ProgramData\ntuser.pol 2021-02-19 17:07 - 2021-03-06 12:00 - 000000000 ____D C:\Users\korisnik\AppData\LocalLow\uTorrent 2021-02-19 16:59 - 2021-03-08 17:53 - 000000000 ____D C:\Users\korisnik\Desktop\FRST-OlderVersion 2021-02-15 16:31 - 2021-03-09 19:41 - 000000000 ____D C:\FRST 2021-02-15 16:29 - 2021-03-08 17:53 - 002301440 _____ (Farbar) C:\Users\korisnik\Desktop\FRST64.exe 2021-02-15 15:16 - 2021-02-27 18:53 - 000000000 ____D C:\Users\korisnik\AppData\LocalLow\IGDump 2021-02-15 15:08 - 2021-02-15 15:08 - 000000000 ____D C:\Users\korisnik\AppData\Local\mbam 2021-02-15 15:05 - 2021-02-15 15:05 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys ==================== Mesec dana (modifikovane) ================== (Ukoliko je stavka unešena u fixlist, Datoteka/Fascikla će biti premeštena.) 2021-03-09 19:38 - 2009-07-14 05:45 - 000026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2021-03-09 19:38 - 2009-07-14 05:45 - 000026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2021-03-09 19:28 - 2016-04-28 10:25 - 000000000 ____D C:\ProgramData\NVIDIA 2021-03-09 19:28 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-03-08 18:17 - 2016-05-10 21:55 - 000000000 ____D C:\Users\korisnik\AppData\Roaming\uTorrent 2021-03-08 18:17 - 2016-05-09 15:08 - 000000000 ____D C:\Program Files\CCleaner 2021-03-08 18:17 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf 2021-03-08 16:42 - 2009-07-14 06:13 - 000006170 _____ C:\Windows\system32\PerfStringBackup.INI 2021-03-06 19:29 - 2016-11-23 16:08 - 000000000 ____D C:\Program Files\KMSpico 2021-03-06 12:01 - 2019-06-18 14:48 - 000000000 ____D C:\Users\korisnik\AppData\Local\BitTorrentHelper 2021-03-06 11:57 - 2016-04-29 21:42 - 000000000 ____D C:\ProgramData\IObit 2021-03-06 11:50 - 2016-05-04 10:58 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2021-02-26 19:26 - 2016-06-01 16:28 - 000002067 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-02-26 19:09 - 2009-07-14 04:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy 2021-02-26 19:09 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy 2021-02-26 19:04 - 2018-03-15 13:01 - 000000000 ____D C:\ProgramData\GlarySoft 2021-02-26 19:04 - 2018-03-12 18:12 - 000000000 ____D C:\Users\korisnik\AppData\Roaming\GlarySoft 2021-02-19 17:29 - 2016-04-26 20:34 - 000000000 ____D C:\Users\korisnik\AppData\Roaming\BSplayer PRO 2021-02-15 16:24 - 2021-02-03 19:42 - 000000000 ____D C:\ProgramData\TranslateService 2021-02-15 16:00 - 2021-02-03 19:34 - 000000000 ____D C:\Users\korisnik\AppData\Local\Secure File Deleter 6 2021-02-15 16:00 - 2016-05-21 16:09 - 000000000 ____D C:\Program Files (x86)\ManyCam 2021-02-15 16:00 - 2016-02-08 15:22 - 000000000 ___RD C:\Users\korisnik\Desktop\Nova fascikla 2021-02-15 15:59 - 2016-06-03 15:11 - 000000000 ____D C:\Users\korisnik\AppData\Roaming\Nitro PDF 2021-02-15 15:49 - 2018-12-22 10:20 - 000000000 ____D C:\Users\korisnik\AppData\Local\CrashDumps 2021-02-15 15:05 - 2016-05-03 11:24 - 000000000 ____D C:\ProgramData\Malwarebytes-BackupByMalwarebytesPortable 2021-02-14 16:04 - 2016-12-22 19:56 - 000000000 ____D C:\Program Files (x86)\Igra_ProfiPreferans_com 2021-02-14 16:03 - 2016-04-26 20:50 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-02-14 16:01 - 2009-07-14 04:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared 2021-02-14 15:51 - 2016-04-26 20:47 - 000000000 ____D C:\Program Files\Microsoft Office 2021-02-14 15:50 - 2016-05-05 10:59 - 000000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware 2021-02-12 16:53 - 2016-06-01 16:29 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task ==================== Datoteke u korenu nekih direktorijuma ======== 2016-10-14 09:00 - 2016-10-14 09:00 - 000000256 _____ () C:\ProgramData\fontcacheev1.dat 2016-10-31 22:48 - 2016-10-31 22:48 - 000000000 ____H () C:\Users\korisnik\AppData\Local\BITC4E7.tmp 2017-03-24 11:55 - 2017-03-24 11:55 - 000000000 _____ () C:\Users\korisnik\AppData\Local\{7F7CD0A6-B533-4443-9BB0-121CE3C83202} 2016-10-31 22:48 - 2016-10-31 22:48 - 000000000 _____ () C:\Users\korisnik\AppData\Local\{E0C944B0-EDBC-4913-A741-41E409FE0557} ==================== SigCheck ============================ (Ne postoji automatizovan popravak za datoteke koji nisu prošle verifikaciju.) LastRegBack: 2021-03-06 13:11 ==================== Kraj od FRST.txt ======================== https://www.mycity.rs/must-login.png

Profil

L3g1oN Poslao: 10 Mar 2021 10:40 Idi na vrh
offline L3g1oN AMF pripravnik Pridružio: 23 Maj 2020 Poruke: 139	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Napisano: 10 Mar 2021 10:37 Zdravo, Postoji li neki poseban razlog sto si mi poslao 3 izvestaja? Je si li pokretao neke druge alate u medjuvremenu i koje? Takodje sam primetio da si imao neke gluposti u Downloads folderu sa .mp4 ekstenzijom ali ih vise nema u poslednja dva loga. Znas li odakle i zasto su tu? Na primer, jos uvek imas sledeca dva fajla tamo, je su li povezana sa onim prethodnim? C:\Users\korisnik\Downloads\videoplayback (1).mp4 C:\Users\korisnik\Downloads\video-1614097719.mp4 Dopuna: 10 Mar 2021 10:40 Kako je stanje inace sada, ima li promena?

Profil

dvojkan Poslao: 18 Mar 2021 14:22 Idi na vrh
offline dvojkan Građanin Pridružio: 01 Mar 2008 Poruke: 245	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Napisano: 12 Mar 2021 10:50 slao sam da se vidi da li ima promena, a i dalje mi se dešavaju neželjene reakcije, recimo uđem ovde na forum, kliknem na temu a otvori mi se neka bez veze stranica na internetu u novom prozoru. Dopuna: 12 Mar 2021 10:51 oni fajlovi to sam nešto skidao pa brisao Dopuna: 15 Mar 2021 12:55 nekad se ovo rešavalo mnogo brže, već mesec dana ne uspevam da dobijem rešenje problema na ovom sajtu? jel nema više ko da radi ili ??? Dopuna: 18 Mar 2021 14:22 stvarno bez veze, izgleda da ovaj forum ne funkcioniše više...

Profil

helen1 Poslao: 18 Mar 2021 15:06 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Ako si jos zainteresovan da ti pomognemo, postavi nove logove FRST programa, da vidimo da li ima izmena. Pa cemo da vidimo brze da resimo.

Profil

dvojkan Poslao: 20 Mar 2021 12:08 Idi na vrh
offline dvojkan Građanin Pridružio: 01 Mar 2008 Poruke: 245	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Izveštaj skeniranja od Farbar Recovery Scan Tool (FRST) (x64) Verzija: 17-03-2021 Pokrenuo korisnik (administrator) na 720-PC (SAMSUNG ELECTRONICS CO., LTD. RV420/RV520/RV720/E3530/S3530/E3420/E3520) (20-03-2021 12:01:59) Pokrenuto sa C:\Users\korisnik\Desktop Učitani Profili: korisnik & Administrator Platform: Windows 7 Ultimate Service Pack 1 (X64) Jezik: engleski (SAD) -> srpski (latinica, Srbija i Crna Gora (bivša)) Podrazumevani pregledač: Chrome Režim pokretanja sistema: Normal ==================== Procesi (Na Beloj Listi) ================= (Ukoliko je stavka unešena u fixlist, proces ce biti zatvoren. Datoteka nece biti premešten.) (ACD Systems International -> ) [Datoteka nije potpisana] C:\Program Files\ACD Systems\ACDSee Pro\10.0\ACDSeeCommanderPro10.exe (ACD Systems International Inc. -> ) [Datoteka nije potpisana] C:\Program Files\ACD Systems\ACDSee Home\24.0\ACDSeeCommanderHome24.exe (ACD Systems International Inc. -> ACD Systems) [Datoteka nije potpisana] C:\Program Files\ACD Systems\ACDSee Home\24.0\acdIDInTouch2.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <12> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe ==================== Registar (Na Beloj Listi) =================== (Ukoliko je stavka unešena u fixlist, registru stavka ce biti vraćena na podrazumevanu vrednost ili uklonjena. Datoteka neće biti premeštena.) HKLM\...\Run: [ACHW24EN] => C:\Program Files\ACD Systems\ACDSee Home\24.0\acdIDInTouch2.exe [2088408 2020-10-20] (ACD Systems International Inc. -> ACD Systems) [Datoteka nije potpisana] HKU\S-1-5-21-746845287-3329047123-463373260-1000\...\Run: [ACDSeeCommanderPro10] => C:\Program Files\ACD Systems\ACDSee Pro\10.0\ACDSeeCommanderPro10.exe [3412936 2016-10-04] (ACD Systems International -> ) [Datoteka nije potpisana] HKU\S-1-5-21-746845287-3329047123-463373260-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8358680 2015-06-01] (Piriform Ltd -> Piriform Ltd) HKU\S-1-5-21-746845287-3329047123-463373260-1000\...\Run: [ACDSeeCommanderHome24] => C:\Program Files\ACD Systems\ACDSee Home\24.0\ACDSeeCommanderHome24.exe [6658208 2020-10-20] (ACD Systems International Inc. -> ) [Datoteka nije potpisana] HKU\S-1-5-21-746845287-3329047123-463373260-1000\...\Policies\Explorer: [NoInstrumentation] 1 HKU\S-1-5-21-746845287-3329047123-463373260-1000\...\MountPoints2: {7ded094a-1c92-11e9-8249-90a4de6d68cc} - G:\HiSuiteDownLoader.exe HKLM\...\Print\Monitors\Nitro PDF Port Monitor: C:\Windows\SYSTEM32\nitrolocalmon9.dll [29704 2013-12-17] (Nitro PDF Software -> Nitro PDF Software) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.104\Installer\chrmstp.exe [2021-01-31] (Google LLC -> Google LLC) Policies: C:\ProgramData\NTUSER.pol: Restrikcije <==== Pažnja ==================== Planirani Zadaci (Na Beloj Listi) ============ (Ukoliko je stavka unešena u fixlist, biće uklonjena iz registra. Datoteka neće biti premeštena ukoliko nije izlistana zasebno..) Task: {040DB50B-AC9A-4D06-8298-422A707CF1D1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: {0447C2EF-CEB9-43B2-A3DC-CDE60445BE58} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24612256 2021-03-05] (Microsoft Corporation -> Microsoft Corporation) Task: {0EC9067F-AD5D-4B5D-A049-209F15084608} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: {2440ECBD-8D2C-4A7A-8525-C2AED06F44EA} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(1): %windir%\system32\GWX\GWXUXWorker.exe -> /ScheduleUpgradeReminderTime Task: {2440ECBD-8D2C-4A7A-8525-C2AED06F44EA} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-04-24]] (Microsoft Windows -> Microsoft Corporation) Task: {3F534421-FE0A-4591-BE95-E27C384ED1B0} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfigAndContent Task: {3F534421-FE0A-4591-BE95-E27C384ED1B0} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-04-24]] (Microsoft Windows -> Microsoft Corporation) Task: {43B013E0-3E9A-42F4-965B-08B2AF35CA0A} - System32\Tasks\TrackerAutoUpdate => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe [4487904 2016-04-19] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.) Task: {4CC0FE9B-D306-45D0-9DD8-B60996B2130C} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig Task: {4CC0FE9B-D306-45D0-9DD8-B60996B2130C} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-04-24]] (Microsoft Windows -> Microsoft Corporation) Task: {53D571FC-4707-4509-8C9D-91F5ED2E4F58} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-746845287-3329047123-463373260-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe Task: {53F76E91-273F-4859-B7B6-0DA2C1D2A7E6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2017-11-15] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {61F6E32A-BC6A-42DD-A1A7-DC4DAF4D648B} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24612256 2021-03-05] (Microsoft Corporation -> Microsoft Corporation) Task: {70DAD081-C57D-4E83-A22B-E16572BE32E4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [6405912 2015-06-01] (Piriform Ltd -> Piriform Ltd) Task: {73743BE2-AD32-429A-83E7-0A25D4BD5C29} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158568 2021-03-12] (Microsoft Corporation -> Microsoft Corporation) Task: {75B5A7BE-C187-40E0-A169-6E4959DCD090} - System32\Tasks\{E5139005-6F0E-485F-921E-74916B0B5751} => C:\Program Files (x86)\Nitro\Pro 9\NitroPDF.exe [5485064 2013-12-17] (Nitro PDF Software -> Nitro PDF) Task: {773DE983-0F5C-4943-B856-C9EB233B3AB6} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-746845287-3329047123-463373260-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe Task: {77E75ACD-3E29-4BAE-88AD-5F6ECF1A30A2} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158568 2021-03-12] (Microsoft Corporation -> Microsoft Corporation) Task: {86063FFB-370B-4B00-B28E-9E27AF992DA6} - System32\Tasks\Games\UpdateCheck_S-1-5-21-746845287-3329047123-463373260-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2746368 2014-11-15] (Microsoft Windows -> Microsoft Corporation) Task: {8DA7CF1C-3C00-4711-8666-88D92265DF26} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.) Task: {98EF2D8B-6030-4AA5-B30A-52F78BC5EF70} - System32\Tasks\{F980A2AA-0879-4540-8FE8-B57507D60191} => C:\Program Files (x86)\Nitro\Pro 9\NitroPDF.exe [5485064 2013-12-17] (Nitro PDF Software -> Nitro PDF) Task: {9B49AE81-C2C2-4776-B049-0019C691DCC0} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-746845287-3329047123-463373260-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe Task: {A0221BE6-A1E1-4D29-8667-6DE0B3C7FBE6} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig Task: {A0221BE6-A1E1-4D29-8667-6DE0B3C7FBE6} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(2): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshContent Task: {A0221BE6-A1E1-4D29-8667-6DE0B3C7FBE6} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(3): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-04-24]] (Microsoft Windows -> Microsoft Corporation) Task: {C4D2A224-9EE3-4D0C-8186-C8EC24F95A37} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_148_Plugin.exe [1455752 2018-11-13] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {E6EDB64E-AB7B-4EF3-BA25-49FBE0F2E02B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6158744 2021-03-12] (Microsoft Corporation -> Microsoft Corporation) Task: {FA32E743-0704-49E4-8E85-0E62043FB66F} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe Task: {FDD411B0-9190-4894-8F61-92A9B85E73D6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6158744 2021-03-12] (Microsoft Corporation -> Microsoft Corporation) (Ukoliko je stavka unešena u fixlist, planirani zadaci (.job) datoteke će biti premeštene. Datoteka koju zadatak izvršava neće biti uklonjena.) Task: C:\Windows\Tasks\TrackerAutoUpdate.job => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe-CheckUpdate(Tracker Software Products (Canada) Ltd.Kee ==================== Internet (Na Beloj Listi) ==================== (Ukoliko je stavka unešena u fixlist, ako je to registru stavka, biće uklonjena ili vraćena na podrazumevanu vrednost.) Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.) Hosts: Postoji više od jednog unosa u Hosts. Pogledati Hosts sekciju iz Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{41C84ED3-C0DD-4CB2-8A18-D0BDF0E29827}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{6678FE1E-5241-4B1B-93E9-044DB267A373}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{B52A5556-1FFA-4B76-84FB-6EBE83B28CEE}: [DhcpNameServer] 89.216.1.40 89.216.1.50 Tcpip\..\Interfaces\{FBA819D8-C074-4A1F-A148-259DBF56E06A}: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF DefaultProfile: 8j2bf1ih.default FF ProfilePath: C:\Users\korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\8j2bf1ih.default [2021-03-20] FF Homepage: Mozilla\Firefox\Profiles\8j2bf1ih.default -> hxxps://www.google.rs/ FF Extension: (Video DownloadHelper) - C:\Users\korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\8j2bf1ih.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-03-16] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_31_0_0_148.dll [2018-11-13] (Adobe Systems Incorporated -> ) FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2016-04-19] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.) FF Plugin: @java.com/DTPlugin,version=11.102.2 -> C:\Program Files\Java\jre1.8.0_102\bin\dtplugin\npDeployJava1.dll [2016-08-06] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre1.8.0_91\bin\new_plugin\npjp2.dll [Nema Datoteke] FF Plugin: @java.com/JavaPlugin,version=11.102.2 -> C:\Program Files\Java\jre1.8.0_102\bin\plugin2\npjp2.dll [2016-08-06] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-12-14] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_148.dll [2018-11-13] (Adobe Systems Incorporated -> ) FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2016-04-19] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-04] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-12-14] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 9\npnitromozilla.dll [2013-12-17] (Nitro PDF Software -> Nitro PDF) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Nema Datoteke] FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-03-06] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-746845287-3329047123-463373260-1000: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2016-04-19] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.) Chrome: ======= CHR Profile: C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default [2021-03-20] CHR Extension: (Презентације) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-26] CHR Extension: (Документи) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-10-26] CHR Extension: (Google диск) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-20] CHR Extension: (YouTube) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-10-26] CHR Extension: (Табеле) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-10-26] CHR Extension: (Google документи офлајн) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-09] CHR Extension: (Адблоцкер за Иоутубе ™) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\maekfnoeejhpjfkfmdlckioggdcdofpg [2021-03-12] CHR Extension: (Плаћања у Chrome веб-продавници) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-03] CHR Extension: (Gmail) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-24] CHR Extension: (Chrome Media Router) - C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-02-03] CHR HKU\S-1-5-21-746845287-3329047123-463373260-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo] CHR HKU\S-1-5-21-746845287-3329047123-463373260-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Servisi (Na Beloj Listi) =================== (Ukoliko je stavka unešena u fixlist, biće uklonjena iz registra. Datoteka neće biti premeštena ukoliko nije izlistana zasebno..) S3 Adguard Service; C:\Program Files (x86)\Adguard\AdguardSvc.exe [149496 2016-08-26] (Performix LLC -> Performix LLC) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.) S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2017-11-15] (Adobe Systems Incorporated -> Adobe Systems Incorporated) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11137440 2021-03-05] (Microsoft Corporation -> Microsoft Corporation) S3 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [437224 2016-10-27] (Digital Wave Ltd -> Digital Wave Ltd.) S3 Disc Soft Bus Service; C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe [887056 2014-07-10] (Disc Soft Ltd -> Disc Soft Ltd) S3 NitroDriverReadSpool9; C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe [230920 2013-12-17] (Nitro PDF Software -> Nitro PDF Software) S3 nlsX86cc; C:\Windows\SysWOW64\NLSSRV32.EXE [69640 2013-12-17] (Nitro PDF Software -> Nalpeiron Ltd.) S3 RalinkRegistryWriter; C:\Program Files (x86)\Tenda\Common\RaRegistry.exe [375872 2011-03-31] (Ralink Technology Corporation -> Ralink Technology, Corp.) S3 RalinkRegistryWriter64; C:\Program Files (x86)\Tenda\Common\RaRegistry64.exe [454208 2011-03-31] (Ralink Technology Corporation -> Ralink Technology, Corp.) S3 RaMediaServer; C:\Program Files (x86)\Tenda\Common\RaMediaServer.exe [621632 2011-03-04] (Ralink Technology Corporation -> ) S3 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [745664 2016-01-11] (@ByELDI -> @ByELDI) [Datoteka nije potpisana] R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2014-11-15] (Microsoft Windows -> Microsoft Corporation) S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X] S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X] S4 MBAMScheduler; "\mbamscheduler.exe" [X] S2 MBAMService-BackupByMalwarebytesPortable; "C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe" [X] S2 RegSrvc; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [X] S3 ZAMSvc; "C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe" /service [X] ===================== Drajveri (Na Beloj Listi) =================== (Ukoliko je stavka unešena u fixlist, biće uklonjena iz registra. Datoteka neće biti premeštena ukoliko nije izlistana zasebno..) R1 adgnetworktdidrv; C:\Windows\System32\drivers\adgnetworktdidrv.sys [62536 2016-07-21] (Performix LLC -> ) R3 dtscsibus; C:\Windows\System32\DRIVERS\dtscsibus.sys [29696 2016-04-26] (Disc Soft Ltd -> Disc Soft Ltd) S3 GemCCID; C:\Windows\System32\DRIVERS\GemCCID.sys [137712 2016-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Gemalto) S3 gfiutil; C:\Windows\System32\drivers\gfiutil.sys [31264 2013-09-04] (GFI Software (Florida) Inc. -> ThreatTrack Security) R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [27552 2018-02-25] (Martin Malik - REALiX -> REALiX(tm)) S3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [49304 2014-12-29] (ManyCam LLC -> Visicom Media Inc.) S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes Corporation -> Malwarebytes) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation -> Malwarebytes Corporation) R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35992 2014-12-29] (ManyCam LLC -> Visicom Media Inc.) S2 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [142120 2007-04-27] (SafeNet, Inc. -> SafeNet, Inc.) S3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [3567488 2016-05-22] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 usbbus; C:\Windows\System32\DRIVERS\lgx64bus.sys [17920 2008-11-19] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) S3 UsbDiag; C:\Windows\System32\DRIVERS\lgx64diag.sys [27136 2008-11-19] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) S3 USBModem; C:\Windows\System32\DRIVERS\lgx64modem.sys [33792 2008-11-19] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) R3 usbsmi; C:\Windows\System32\DRIVERS\SMIksdrv.sys [206336 2011-03-02] (Silicon Motion, Inc. -> SMI) S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [159936 2016-08-16] (NGO -> MBB) S3 btwaudio; system32\drivers\btwaudio.sys [X] S3 btwavdt; system32\DRIVERS\btwavdt.sys [X] S3 btwl2cap; system32\DRIVERS\btwl2cap.sys [X] S3 btwrchid; system32\DRIVERS\btwrchid.sys [X] S3 pccsmcfd; system32\DRIVERS\pccsmcfdx64.sys [X] S3 VGPU; System32\drivers\rdvgkmd.sys [X] S1 ZAM; \??\C:\Windows\System32\drivers\zam64.sys [X] S1 ZAM_Guard; \??\C:\Windows\System32\drivers\zamguard64.sys [X] S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X] S3 ZTEusbnet; system32\DRIVERS\ZTEusbnet.sys [X] S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X] S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X] ==================== NetSvcs (Na Beloj Listi) =================== (Ukoliko je stavka unešena u fixlist, biće uklonjena iz registra. Datoteka neće biti premeštena ukoliko nije izlistana zasebno..) ==================== Mesec dana (kreirane) (Na Beloj Listi) ========= (Ukoliko je stavka unešena u fixlist, Datoteka/Fascikla će biti premeštena.) Greška tokom čitanja datoteke: "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alatke za Microsoft Office " 2021-03-20 12:01 - 2021-03-20 12:02 - 000022523 _____ C:\Users\korisnik\Desktop\FRST.txt 2021-03-20 11:53 - 2021-03-20 12:02 - 000000000 ____D C:\FRST 2021-03-20 11:52 - 2021-03-20 11:52 - 002300928 _____ (Farbar) C:\Users\korisnik\Desktop\FRST64.exe 2021-03-17 18:42 - 2021-03-17 18:42 - 014474986 _____ C:\Users\korisnik\Downloads\problem with a starr ,2 gear.3gp 2021-03-16 17:31 - 2021-03-16 17:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader 2021-03-16 17:31 - 2021-03-16 17:31 - 000001315 _____ C:\ProgramData\Desktop\YTD Video Downloader.lnk 2021-03-16 17:31 - 2021-03-16 17:31 - 000000000 ____D C:\Program Files (x86)\GreenTree Applications 2021-03-13 16:25 - 2021-03-13 16:25 - 000962780 _____ C:\Users\korisnik\Desktop\report-1615649070078.pdf 2021-03-13 16:24 - 2021-03-13 16:24 - 000962780 _____ C:\Users\korisnik\Downloads\report-1615649070078.pdf 2021-03-12 12:06 - 2021-03-12 12:06 - 000000000 _____ C:\Users\korisnik\Downloads\Parov Stelar - Jimmy´s Gang (Official Video) (1).webm 2021-03-12 12:04 - 2021-03-12 12:04 - 000000000 _____ C:\Users\korisnik\Downloads\Parov Stelar - Jimmy´s Gang (Official Video).webm 2021-03-12 11:51 - 2021-03-12 11:51 - 033658763 _____ C:\Users\korisnik\Downloads\Parov Stelar - Demon Dance (Official Video).webm 2021-03-12 11:40 - 2021-03-12 11:40 - 045183234 _____ C:\Users\korisnik\Downloads\Tuba Skinny - Jubilee Stomp - Royal Street I 2018.webm 2021-03-12 11:37 - 2021-03-12 11:37 - 014573549 _____ C:\Users\korisnik\Downloads\videoplayback (14).mp4 2021-03-12 11:31 - 2021-03-12 11:31 - 000000000 _____ C:\Users\korisnik\Downloads\AronChupa - I'm an Albatraoz - OFFICIAL VIDEO.webm 2021-03-12 11:11 - 2021-03-12 11:12 - 012445013 _____ C:\Users\korisnik\Downloads\videoplayback (13).mp4 2021-03-12 11:10 - 2021-03-12 11:10 - 015631684 _____ C:\Users\korisnik\Downloads\videoplayback (12).mp4 2021-03-12 11:07 - 2021-03-12 11:07 - 014997724 _____ C:\Users\korisnik\Downloads\videoplayback (11).mp4 2021-03-09 21:14 - 2021-03-09 21:14 - 013521727 _____ C:\Users\korisnik\Downloads\videoplayback (10).mp4 2021-03-09 20:54 - 2021-03-09 20:55 - 010421255 _____ C:\Users\korisnik\Downloads\videoplayback (9).mp4 2021-03-09 20:39 - 2021-03-09 20:40 - 011300367 _____ C:\Users\korisnik\Downloads\videoplayback (8).mp4 2021-03-09 20:37 - 2021-03-09 20:37 - 015648212 _____ C:\Users\korisnik\Downloads\videoplayback (7).mp4 2021-03-09 20:35 - 2021-03-09 20:35 - 006040886 _____ C:\Users\korisnik\Downloads\videoplayback (6).mp4 2021-03-09 20:29 - 2021-03-09 20:29 - 014997724 _____ C:\Users\korisnik\Downloads\videoplayback (5).mp4 2021-03-09 19:58 - 2021-03-09 19:58 - 002597048 _____ C:\Users\korisnik\Downloads\videoplayback (4).mp4 2021-03-09 19:55 - 2021-03-09 19:55 - 008415270 _____ C:\Users\korisnik\Downloads\videoplayback (3).mp4 2021-03-09 19:54 - 2021-03-09 19:54 - 005121492 _____ C:\Users\korisnik\Downloads\videoplayback (2).mp4 2021-03-09 19:37 - 2021-03-09 19:37 - 005599264 _____ C:\Users\korisnik\Downloads\videoplayback (1).mp4 2021-03-06 18:54 - 2021-03-06 18:55 - 000192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2021-03-06 18:53 - 2021-03-06 18:53 - 000000000 ____D C:\ProgramData\Malwarebytes 2021-03-06 18:53 - 2016-03-10 01:09 - 000065408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2021-03-06 18:53 - 2016-03-10 01:08 - 000140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys 2021-03-06 18:53 - 2016-03-10 01:08 - 000027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2021-03-06 11:55 - 2021-03-06 11:57 - 000000000 ____D C:\AdwCleaner 2021-03-06 11:54 - 2021-03-06 11:54 - 008463216 _____ (Malwarebytes) C:\Users\korisnik\Desktop\adwcleaner_8.1.exe 2021-02-26 19:19 - 2021-02-26 19:19 - 008840129 _____ C:\Users\korisnik\Downloads\video-1614097719.mp4 2021-02-26 19:11 - 2021-02-26 19:11 - 000000008 __RSH C:\ProgramData\ntuser.pol 2021-02-19 17:07 - 2021-03-06 12:00 - 000000000 ____D C:\Users\korisnik\AppData\LocalLow\uTorrent ==================== Mesec dana (modifikovane) ================== (Ukoliko je stavka unešena u fixlist, Datoteka/Fascikla će biti premeštena.) 2021-03-20 11:53 - 2016-04-28 10:25 - 000000000 ____D C:\ProgramData\NVIDIA 2021-03-20 11:50 - 2009-07-14 05:45 - 000026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2021-03-20 11:50 - 2009-07-14 05:45 - 000026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2021-03-20 11:35 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-03-13 15:27 - 2016-06-01 16:28 - 000002067 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-03-12 12:27 - 2018-12-22 10:20 - 000000000 ____D C:\Users\korisnik\AppData\Local\CrashDumps 2021-03-12 12:27 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf 2021-03-12 11:04 - 2016-04-26 20:50 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-03-12 11:03 - 2009-07-14 04:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared 2021-03-12 10:59 - 2016-04-26 20:47 - 000000000 ____D C:\Program Files\Microsoft Office 2021-03-08 18:17 - 2016-05-10 21:55 - 000000000 ____D C:\Users\korisnik\AppData\Roaming\uTorrent 2021-03-08 18:17 - 2016-05-09 15:08 - 000000000 ____D C:\Program Files\CCleaner 2021-03-08 16:42 - 2009-07-14 06:13 - 000006170 _____ C:\Windows\system32\PerfStringBackup.INI 2021-03-06 19:29 - 2016-11-23 16:08 - 000000000 ____D C:\Program Files\KMSpico 2021-03-06 12:01 - 2019-06-18 14:48 - 000000000 ____D C:\Users\korisnik\AppData\Local\BitTorrentHelper 2021-03-06 11:57 - 2016-04-29 21:42 - 000000000 ____D C:\ProgramData\IObit 2021-03-06 11:50 - 2016-05-04 10:58 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2021-02-27 18:53 - 2021-02-15 15:16 - 000000000 ____D C:\Users\korisnik\AppData\LocalLow\IGDump 2021-02-26 19:09 - 2009-07-14 04:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy 2021-02-26 19:09 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy 2021-02-26 19:04 - 2018-03-15 13:01 - 000000000 ____D C:\ProgramData\GlarySoft 2021-02-26 19:04 - 2018-03-12 18:12 - 000000000 ____D C:\Users\korisnik\AppData\Roaming\GlarySoft 2021-02-19 17:29 - 2016-04-26 20:34 - 000000000 ____D C:\Users\korisnik\AppData\Roaming\BSplayer PRO ==================== Datoteke u korenu nekih direktorijuma ======== 2016-10-14 09:00 - 2016-10-14 09:00 - 000000256 _____ () C:\ProgramData\fontcacheev1.dat 2016-10-31 22:48 - 2016-10-31 22:48 - 000000000 ____H () C:\Users\korisnik\AppData\Local\BITC4E7.tmp 2017-03-24 11:55 - 2017-03-24 11:55 - 000000000 _____ () C:\Users\korisnik\AppData\Local\{7F7CD0A6-B533-4443-9BB0-121CE3C83202} 2016-10-31 22:48 - 2016-10-31 22:48 - 000000000 _____ () C:\Users\korisnik\AppData\Local\{E0C944B0-EDBC-4913-A741-41E409FE0557} ==================== SigCheck ============================ (Ne postoji automatizovan popravak za datoteke koji nisu prošle verifikaciju.) LastRegBack: 2021-03-06 13:11 https://www.mycity.rs/must-login.png

Profil

L3g1oN Poslao: 21 Mar 2021 09:15 Idi na vrh
offline L3g1oN AMF pripravnik Pridružio: 23 Maj 2020 Poruke: 139	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Izbrisi sledece programe iz Control Panel-a: Citat:YTD Video Downloader 4.9 1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod: HKU\S-1-5-21-746845287-3329047123-463373260-1000\...\MountPoints2: {7ded094a-1c92-11e9-8249-90a4de6d68cc} - G:\HiSuiteDownLoader.exe Policies: C:\ProgramData\NTUSER.pol: Restrikcije <==== Pažnja 2021-03-06 11:57 - 2016-04-29 21:42 - 000000000 ____D C:\ProgramData\IObit 2021-02-26 19:04 - 2018-03-15 13:01 - 000000000 ____D C:\ProgramData\GlarySoft 2021-02-26 19:04 - 2018-03-12 18:12 - 000000000 ____D C:\Users\korisnik\AppData\Roaming\GlarySoft 2021-03-16 17:31 - 2021-03-16 17:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader 2021-03-16 17:31 - 2021-03-16 17:31 - 000001315 _____ C:\ProgramData\Desktop\YTD Video Downloader.lnk 2021-03-16 17:31 - 2021-03-16 17:31 - 000000000 ____D C:\Program Files (x86)\GreenTree Applications ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll -> Nema Datoteke ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll -> Nema Datoteke ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll -> Nema Datoteke ShortcutWithArgument: C:\Users\korisnik\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1" EmptyTemp: 2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi. 3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj. Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema. Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku. Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a.

Profil

MyCity » Ambulanta » molim proveru

Ko je trenutno na forumu

Ukupno su 1280 korisnika na forumu :: 54 registrovanih, 8 sakrivenih i 1218 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: amaterSRB, amstel, Apok, babaroga, Boris90, Brana01, BraneS, Bubimir, ccoogg123, cenejac111, CheefCoach, dankisha, Dimitrise93, Djokkinen, DPera, Dvojac005, GandorCC, Gargantua, Georgius, GORDI, goxin, ikan, Istman, jukeboxer, Klecaviks, ljuba, mercedesamg, Mercury, Metanoja, mikrimaus, milenko crazy north, moldway, Nemanja.M, NoOneEver Dreams, ObelixSRB, Panter, panzerwaffe, pein, Petar35, procesor, sasa87, shaja1, srbijaiznadsvega, Srki94, Stoilkovic, theNedjeljko, Toper, Viceroy, virked, Vlada1389, vobo, wolverined4, zillbg, 223223

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by